Unverified Commit 25ca6286 authored by Martin Lowe's avatar Martin Lowe 🇨🇦 Committed by GitHub
Browse files

Add secure cookie header to protect login state data (#279)

parent d47f97d1
......@@ -45,6 +45,7 @@ quarkus.oidc.logout.post-logout-path=/
quarkus.oidc.logout.path=/api/logout
security.csrf.enabled=true
quarkus.oidc.authentication.java-script-auto-redirect=false
quarkus.oidc.authentication.cookie-force-secure=true
## Recreate DB profile (easy to trigger in remote envs)
%dbfresh.quarkus.hibernate-orm.database.generation=drop-and-create
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment