mirror of
https://github.com/xcat2/confluent.git
synced 2024-11-23 01:53:28 +00:00
Remove 'path' condition for session cookie
The cookie had an unnecessary limitation. path need not be specified, and it is possible for a client to request in a way that fails the criteria.
This commit is contained in:
parent
7f9394b33a
commit
0ad4ae90c9
@ -290,7 +290,6 @@ def _authorize_request(env, operation):
|
||||
cookie['confluentsessionid'] = sessid
|
||||
cookie['confluentsessionid']['secure'] = 1
|
||||
cookie['confluentsessionid']['httponly'] = 1
|
||||
cookie['confluentsessionid']['path'] = '/'
|
||||
skiplog = _should_skip_authlog(env)
|
||||
if authdata:
|
||||
auditmsg = {
|
||||
|
Loading…
Reference in New Issue
Block a user