Browse Source

Drop unnecessary 'HttpOnly' value as unit tests do not like it

Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
v0.0.4-alpha
Pekka Helenius 4 years ago
parent
commit
5c5ed43caa
1 changed files with 5 additions and 1 deletions
  1. +5
    -1
      bookstore/src/main/java/com/fjordtek/bookstore/service/session/BookSameSiteCookieFilter.java

+ 5
- 1
bookstore/src/main/java/com/fjordtek/bookstore/service/session/BookSameSiteCookieFilter.java View File

@ -30,7 +30,11 @@ public class BookSameSiteCookieFilter extends GenericFilterBean {
throws IOException, ServletException { throws IOException, ServletException {
HttpServletResponse httpResponse = (HttpServletResponse) responseData; HttpServletResponse httpResponse = (HttpServletResponse) responseData;
httpResponse.setHeader("Set-Cookie", "HttpOnly; SameSite=strict;");
/*
* Unnecessary, already set 'HttpOnly' cookie string removed.
* Unit tests do not like it (colon separation maybe?)
*/
httpResponse.setHeader("Set-Cookie", "SameSite=strict;");
chain.doFilter(requestData, responseData); chain.doFilter(requestData, responseData);
} }


Loading…
Cancel
Save