Implement anti csrf measures

This is done by using the "samesite" cookie attribute.
author: xXx-caillou-xXx 2017-11-24 14:03:37 +0100
committer: jvoisin 2017-11-24 14:03:37 +0100
commit: 5a224ee0c92d1639395d6a0c629316ae64226125 (patch)
tree: 8925d27e2bbfa877e9fb1fc20868fbef3d009b04 /src/sp_config.c
parent: 79304a29661476dc75bba07c5a83133122bbcb5c (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/src/sp_config.c b/src/sp_config.c
index 13002cc..2432cc4 100644
--- a/src/sp_config.c
+++ b/src/sp_config.c
@@ -15,7 +15,7 @@ sp_config_tokens const sp_func[] = {
    {.func = parse_readonly_exec, .token = SP_TOKEN_READONLY_EXEC},
    {.func = parse_global_strict, .token = SP_TOKEN_GLOBAL_STRICT},
    {.func = parse_upload_validation, .token = SP_TOKEN_UPLOAD_VALIDATION},
-    {.func = parse_cookie_encryption, .token = SP_TOKEN_COOKIE_ENCRYPTION},
+    {.func = parse_cookie, .token = SP_TOKEN_COOKIE_ENCRYPTION},
    {.func = parse_global, .token = SP_TOKEN_GLOBAL},
    {.func = parse_auto_cookie_secure, .token = SP_TOKEN_AUTO_COOKIE_SECURE},
    {.func = parse_disable_xxe, .token = SP_TOKEN_DISABLE_XXE},
author	xXx-caillou-xXx	2017-11-24 14:03:37 +0100
committer	jvoisin	2017-11-24 14:03:37 +0100
commit	5a224ee0c92d1639395d6a0c629316ae64226125 (patch)
tree	8925d27e2bbfa877e9fb1fc20868fbef3d009b04 /src/sp_config.c
parent	79304a29661476dc75bba07c5a83133122bbcb5c (diff)

diff --git a/src/sp_config.c b/src/sp_config.c index 13002cc..2432cc4 100644 --- a/src/sp_config.c +++ b/src/sp_config.c
@@ -15,7 +15,7 @@ sp_config_tokens const sp_func[] = {
15	{.func = parse_readonly_exec, .token = SP_TOKEN_READONLY_EXEC},	15	{.func = parse_readonly_exec, .token = SP_TOKEN_READONLY_EXEC},
16	{.func = parse_global_strict, .token = SP_TOKEN_GLOBAL_STRICT},	16	{.func = parse_global_strict, .token = SP_TOKEN_GLOBAL_STRICT},
17	{.func = parse_upload_validation, .token = SP_TOKEN_UPLOAD_VALIDATION},	17	{.func = parse_upload_validation, .token = SP_TOKEN_UPLOAD_VALIDATION},
18	{.func = parse_cookie_encryption, .token = SP_TOKEN_COOKIE_ENCRYPTION},	18	{.func = parse_cookie, .token = SP_TOKEN_COOKIE_ENCRYPTION},
19	{.func = parse_global, .token = SP_TOKEN_GLOBAL},	19	{.func = parse_global, .token = SP_TOKEN_GLOBAL},
20	{.func = parse_auto_cookie_secure, .token = SP_TOKEN_AUTO_COOKIE_SECURE},	20	{.func = parse_auto_cookie_secure, .token = SP_TOKEN_AUTO_COOKIE_SECURE},
21	{.func = parse_disable_xxe, .token = SP_TOKEN_DISABLE_XXE},	21	{.func = parse_disable_xxe, .token = SP_TOKEN_DISABLE_XXE},