Skip to content

Commit

Permalink
Add secure flag option for userLoggedIn cookie if SESSION_COOKIE_SECU… (
Browse files Browse the repository at this point in the history 
ansible#14762)

Add secure flag option for userLoggedIn cookie if SESSION_COOKIE_SECURE set to True
  • Loading branch information
@CastawayEGR @djyasin
CastawayEGR authored and djyasin committed Sep 11, 2024
1 parent 31077dc commit 8c7aeed
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
4 changes: 2 additions & 2 deletions awx/api/generics.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -91,7 +91,7 @@ def post(self, request, *args, **kwargs):
ret = super(LoggedLoginView, self).post(request, *args, **kwargs)
if request.user.is_authenticated:
logger.info(smart_str(u"User {} logged in from {}".format(self.request.user.username, request.META.get('REMOTE_ADDR', None))))
ret.set_cookie('userLoggedIn', 'true')
ret.set_cookie('userLoggedIn', 'true', secure=getattr(settings, 'SESSION_COOKIE_SECURE', False))
ret.setdefault('X-API-Session-Cookie-Name', getattr(settings, 'SESSION_COOKIE_NAME', 'awx_sessionid'))

return ret
Expand All @@ -107,7 +107,7 @@ def dispatch(self, request, *args, **kwargs):
original_user = getattr(request, 'user', None)
ret = super(LoggedLogoutView, self).dispatch(request, *args, **kwargs)
current_user = getattr(request, 'user', None)
ret.set_cookie('userLoggedIn', 'false')
ret.set_cookie('userLoggedIn', 'false', secure=getattr(settings, 'SESSION_COOKIE_SECURE', False))
if (not current_user or not getattr(current_user, 'pk', True)) and current_user != original_user:
logger.info("User {} logged out.".format(original_user.username))
return ret
Expand Down
2 changes: 1 addition & 1 deletion awx/sso/views.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ def dispatch(self, request, *args, **kwargs):
response = super(CompleteView, self).dispatch(request, *args, **kwargs)
if self.request.user and self.request.user.is_authenticated:
logger.info(smart_str(u"User {} logged in".format(self.request.user.username)))
response.set_cookie('userLoggedIn', 'true')
response.set_cookie('userLoggedIn', 'true', secure=getattr(settings, 'SESSION_COOKIE_SECURE', False))
response.setdefault('X-API-Session-Cookie-Name', getattr(settings, 'SESSION_COOKIE_NAME', 'awx_sessionid'))
return response

Expand Down

0 comments on commit 8c7aeed

Please sign in to comment.