David Acevedo rebelwarrior

will / a.md

Created November 17, 2016 21:04

SameSite strict cookies in rails and pliny/sinatra

SameSite=strict cookies is another layer to help prevent CSRF attacts in newer browsers

Rails

(at least 5, no clue about earlier versions)

--- a/config/initializers/session_store.rb
+++ b/config/initializers/session_store.rb
@@ -1,3 +1,3 @@

jamesmk / gist:3860572

Created October 9, 2012 18:33

Aloha Ruby Conf notes

Zach Holman