0001-misc-change-session-cookie-prefix-to-be-sessionid-43.patch
| tests/test_form_pages.py | ||
|---|---|---|
| 5236 | 5236 |
formdef = create_formdef() |
| 5237 | 5237 |
app = get_app(pub) |
| 5238 | 5238 |
resp = app.get('/test/', status=200)
|
| 5239 |
assert resp.headers['Set-Cookie'].startswith('wcs-')
|
|
| 5239 |
assert resp.headers['Set-Cookie'].startswith('sessionid-')
|
|
| 5240 | 5240 |
assert 'httponly' in resp.headers['Set-Cookie'] |
| 5241 | 5241 |
assert not 'secure' in resp.headers['Set-Cookie'] |
| 5242 | 5242 | |
| 5243 | 5243 |
app = get_app(pub, https=True) |
| 5244 | 5244 |
resp = app.get('/test/', status=200)
|
| 5245 |
assert resp.headers['Set-Cookie'].startswith('wcs-')
|
|
| 5245 |
assert resp.headers['Set-Cookie'].startswith('sessionid-')
|
|
| 5246 | 5246 |
assert 'httponly' in resp.headers['Set-Cookie'] |
| 5247 | 5247 |
assert 'secure' in resp.headers['Set-Cookie'] |
| 5248 | 5248 | |
| wcs/qommon/publisher.py | ||
|---|---|---|
| 423 | 423 | |
| 424 | 424 |
md5_hash = hashlib.md5() |
| 425 | 425 |
md5_hash.update(force_bytes(self.app_dir)) |
| 426 |
self.config.session_cookie_name = self.APP_NAME + '-' + md5_hash.hexdigest()[:6]
|
|
| 426 |
self.config.session_cookie_name = 'sessionid-' + md5_hash.hexdigest()[:6]
|
|
| 427 | 427 |
self.config.session_cookie_path = '/' |
| 428 | 428 | |
| 429 | 429 |
if debug_cfg.get('logger', True):
|
| 430 |
- |
|