240241002/ai_v
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(config): 修改SESSION_COOKIE_SECURE配置以适应开发环境

Browse Source 
- 将SESSION_COOKIE_SECURE设置为False以支持非HTTPS环境
- 注释更新以明确开发环境和非HTTPS生产环境的配置建议
- 保持SESSION_COOKIE_HTTPONLY启用防止XSS攻击
This commit is contained in:
24024 2026-01-12 01:10:19 +08:00
parent 1ea65e4109
commit adcabcf3dd
2 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
__pycache__/config.cpython-312.pyc
View File

Binary file not shown.

2
config.py
View File

@ -13,7 +13,7 @@ class Config:
# Session 配置
PERMANENT_SESSION_LIFETIME = 604800 # 7 天 (单位:秒)
SESSION_COOKIE_SECURE = True # 开发环境设为 False生产环境建议设为 True
SESSION_COOKIE_SECURE = False # 开发环境或非 HTTPS 生产环境设为 False
SESSION_COOKIE_HTTPONLY = True # 防止 XSS 获取 Cookie
# MinIO 配置