diff options
Diffstat (limited to 'src/pybind/mgr/dashboard/controllers/_auth.py')
| -rw-r--r-- | src/pybind/mgr/dashboard/controllers/_auth.py | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/src/pybind/mgr/dashboard/controllers/_auth.py b/src/pybind/mgr/dashboard/controllers/_auth.py new file mode 100644 index 000000000..0015a75e4 --- /dev/null +++ b/src/pybind/mgr/dashboard/controllers/_auth.py @@ -0,0 +1,18 @@ +import cherrypy + + +class ControllerAuthMixin: + @staticmethod + def _delete_token_cookie(token): + cherrypy.response.cookie['token'] = token + cherrypy.response.cookie['token']['expires'] = 0 + cherrypy.response.cookie['token']['max-age'] = 0 + + @staticmethod + def _set_token_cookie(url_prefix, token): + cherrypy.response.cookie['token'] = token + if url_prefix == 'https': + cherrypy.response.cookie['token']['secure'] = True + cherrypy.response.cookie['token']['HttpOnly'] = True + cherrypy.response.cookie['token']['path'] = '/' + cherrypy.response.cookie['token']['SameSite'] = 'Strict' |