Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
E
edx-platform
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
edx
edx-platform
Commits
9db6b04f
Commit
9db6b04f
authored
Apr 22, 2016
by
Edward Zarecor
Browse files
Options
Browse Files
Download
Plain Diff
Merge pull request #11983 from edx/e0d/cookie-updates
Updating cookies settings
parents
d659dd9f
2be2b52f
Hide whitespace changes
Inline
Side-by-side
Showing
4 changed files
with
18 additions
and
2 deletions
+18
-2
cms/envs/aws.py
+6
-0
cms/envs/common.py
+3
-1
lms/envs/aws.py
+6
-0
lms/envs/common.py
+3
-1
No files found.
cms/envs/aws.py
View file @
9db6b04f
...
...
@@ -168,6 +168,12 @@ if ENV_TOKENS.get('SESSION_COOKIE_NAME', None):
EDXMKTG_LOGGED_IN_COOKIE_NAME
=
ENV_TOKENS
.
get
(
'EDXMKTG_LOGGED_IN_COOKIE_NAME'
,
EDXMKTG_LOGGED_IN_COOKIE_NAME
)
EDXMKTG_USER_INFO_COOKIE_NAME
=
ENV_TOKENS
.
get
(
'EDXMKTG_USER_INFO_COOKIE_NAME'
,
EDXMKTG_USER_INFO_COOKIE_NAME
)
# Determines whether the CSRF token can be transported on
# unencrypted channels. It is set to False here for backward compatibility,
# but it is highly recommended that this is True for environments accessed
# by end users.
CSRF_COOKIE_SECURE
=
ENV_TOKENS
.
get
(
'CSRF_COOKIE_SECURE'
,
False
)
#Email overrides
DEFAULT_FROM_EMAIL
=
ENV_TOKENS
.
get
(
'DEFAULT_FROM_EMAIL'
,
DEFAULT_FROM_EMAIL
)
DEFAULT_FEEDBACK_EMAIL
=
ENV_TOKENS
.
get
(
'DEFAULT_FEEDBACK_EMAIL'
,
DEFAULT_FEEDBACK_EMAIL
)
...
...
cms/envs/common.py
View file @
9db6b04f
...
...
@@ -292,7 +292,9 @@ from lms.envs.common import (
# Forwards-compatibility with Django 1.7
CSRF_COOKIE_AGE
=
60
*
60
*
24
*
7
*
52
# It is highly recommended that you override this in any environment accessed by
# end users
CSRF_COOKIE_SECURE
=
False
#################### CAPA External Code Evaluation #############################
XQUEUE_INTERFACE
=
{
...
...
lms/envs/aws.py
View file @
9db6b04f
...
...
@@ -348,6 +348,12 @@ FOOTER_BROWSER_CACHE_MAX_AGE = ENV_TOKENS.get('FOOTER_BROWSER_CACHE_MAX_AGE', FO
NOTIFICATION_EMAIL_CSS
=
ENV_TOKENS
.
get
(
'NOTIFICATION_EMAIL_CSS'
,
NOTIFICATION_EMAIL_CSS
)
NOTIFICATION_EMAIL_EDX_LOGO
=
ENV_TOKENS
.
get
(
'NOTIFICATION_EMAIL_EDX_LOGO'
,
NOTIFICATION_EMAIL_EDX_LOGO
)
# Determines whether the CSRF token can be transported on
# unencrypted channels. It is set to False here for backward compatibility,
# but it is highly recommended that this is True for enviroments accessed
# by end users.
CSRF_COOKIE_SECURE
=
ENV_TOKENS
.
get
(
'CSRF_COOKIE_SECURE'
,
False
)
############# CORS headers for cross-domain requests #################
if
FEATURES
.
get
(
'ENABLE_CORS_HEADERS'
)
or
FEATURES
.
get
(
'ENABLE_CROSS_DOMAIN_CSRF_COOKIE'
):
...
...
lms/envs/common.py
View file @
9db6b04f
...
...
@@ -2051,7 +2051,9 @@ MIGRATION_MODULES = {
# Forwards-compatibility with Django 1.7
CSRF_COOKIE_AGE
=
60
*
60
*
24
*
7
*
52
# It is highly recommended that you override this in any environment accessed by
# end users
CSRF_COOKIE_SECURE
=
False
######################### Django Rest Framework ########################
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment