nikdoof/rustical
1
1
Fork 0
mirror of https://github.com/lennart-k/rustical.git synced 2025-12-14 05:52:19 +00:00
Code Issues Packages Projects Releases Wiki Activity

frontend: use secret key for cookies

Browse Source
This commit is contained in:
Lennart
2024-11-02 13:10:41 +01:00
parent 442082fb1c
commit 33eae4a780
6 changed files with 36 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
crates/frontend/src/lib.rs
View File

@@ -62,15 +62,19 @@ pub fn configure_frontend<AP: AuthenticationProvider, C: CalendarStore + ?Sized>
cfg: &mut web::ServiceConfig,
auth_provider: Arc<AP>,
store: Arc<C>,
frontend_config: FrontendConfig,
) {
cfg.service(
web::scope("")
.wrap(AuthenticationMiddleware::new(auth_provider.clone()))
.wrap(
SessionMiddleware::builder(CookieSessionStore::default(), Key::from(&[0; 64]))
.cookie_secure(true)
.cookie_content_security(actix_session::config::CookieContentSecurity::Private)
.build(),
SessionMiddleware::builder(
CookieSessionStore::default(),
Key::from(&frontend_config.secret_key),
)
.cookie_secure(true)
.cookie_content_security(actix_session::config::CookieContentSecurity::Private)
.build(),
)
.app_data(Data::from(auth_provider))
.app_data(Data::from(store.clone()))