Hi, PFA minor patch to make to make session cookie more secure in Server mode. We will set SESSION_COOKIE_SAMESITE <http://flask.pocoo.org/docs/1.0/config/#SESSION_COOKIE_SAMESITE>='Lax' in the config file. 'Lax' option prevents sending cookies with CSRF-prone requests from external sites, such as submitting a form. RM#3342
P lease review. -- Regards, Murtuza Zabuawala EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company
RM_3342.diff
Description: Binary data
