Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: gorilla/sessions
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v1.2.2
Choose a base ref
...
head repository: gorilla/sessions
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v1.3.0
Choose a head ref
  • 5 commits
  • 5 files changed
  • 5 contributors

Commits on Apr 17, 2024

  1. Fix path traversal (#274) 

    ## What type of PR is this? (check all applicable)

- [ ] Refactor
- [ ] Feature
- [x] Bug Fix
- [ ] Optimization
- [ ] Documentation Update
- [ ] Go Version Update
- [ ] Dependency Update


## Added/updated tests?

- [ ] Yes
- [x] No, and this is why: _no additional tests needed, small fix_
- [ ] I need help with writing tests

## Run verifications and test

- [ ] `make verify` is passing
- [x] `make test` is passing

```
PASS
coverage: 78.1% of statements
ok  	github.com/gorilla/sessions	1.155s	coverage: 78.1% of statements
```
    @moloch--
    moloch-- authored Apr 17, 2024
    Configuration menu
    Copy the full SHA
    e308bfd View commit details
    Browse the repository at this point in the history

Commits on May 4, 2024

  1. #272: feat: Add support for paritioned attribute in cookies as per ch… 

    …rome 3rd party cookie phaseout (#273)

<!--
For Work In Progress Pull Requests, please use the Draft PR feature,
see https://github.blog/2019-02-14-introducing-draft-pull-requests/ for
further details.

     For a timely review/response, please avoid force-pushing additional
     commits if your PR already received reviews or comments.

     Before submitting a Pull Request, please ensure that you have:
- 📖 Read the Contributing guide:
https://github.com/gorilla/.github/blob/main/CONTRIBUTING.md
- 📖 Read the Code of Conduct:
https://github.com/gorilla/.github/blob/main/CODE_OF_CONDUCT.md

     - Provide tests for your changes.
     - Use descriptive commit messages.
	 - Comment your code where appropriate.
	 - Squash your commits
     - Update any related documentation.

     - Add gorilla/pull-request-reviewers as a Reviewer
-->

## What type of PR is this? (check all applicable)

- [ ] Refactor
- [x] Feature
- [ ] Bug Fix
- [ ] Optimization
- [ ] Documentation Update
- [ ] Go Version Update
- [ ] Dependency Update

## Description
The PR contains the change to add Partitioned attribute in the cookies.
As chrome will be deprecating support for 3rd Party cookies, we need to
add support for CHIPS to make cookies partitioned to the website.
## Related Tickets & Documents

<!--
For pull requests that relate or close an issue, please include them
below. We like to follow [Github's guidance on linking issues to pull
requests](https://docs.github.com/en/issues/tracking-your-work-with-issues/linking-a-pull-request-to-an-issue).

For example having the text: "closes #1234" would connect the current
pull
request to issue 1234.  And when we merge the pull request, Github will
automatically close the issue.
-->

- Related Issue #
- Closes #272

## Added/updated tests?

- [x] Yes
- [ ] No, and this is why: _please replace this line with details on why
tests
      have not been included_
- [ ] I need help with writing tests

## Run verifications and test

- [ ] `make verify` is passing
- [ ] `make test` is passing
    @kashishbehl
    kashishbehl authored May 4, 2024
    Configuration menu
    Copy the full SHA
    bdabf0a View commit details
    Browse the repository at this point in the history

Commits on Jun 15, 2024

  1. fix(cookie): Add default samesite (#276) 

    Sets the SameSite cookie attribute to None in the Set-Cookie header. The SameSite=None value provides a reasonable balance between security and usability for websites. This also requires setting Secure=True by default.

Reference: 
https://owasp.org/www-community/SameSite

Related Tickets & Documents
- Related Issue # #256
- Closes #256
    @bharat-rajani
    bharat-rajani authored Jun 15, 2024
    Configuration menu
    Copy the full SHA
    ef99c78 View commit details
    Browse the repository at this point in the history

  2. Fix gorillatoolkit link in README.md (#278) 

    Fix "more examples" link not taking you to where more examples are at

Related Tickets & Documents:
- Closes #246

Signed-off-by: Muhammed Bacalan <muhammedbacalan@gmail.com>
    @mbacalan
    mbacalan authored Jun 15, 2024
    Configuration menu
    Copy the full SHA
    c373b3e View commit details
    Browse the repository at this point in the history

  3. fix(cookie): Remove partitioned field 

    The partitioned field is only available in go 1.23+ and so
should be removed from the library as this version does not
yet require v1.23+.

See golang/go#62490 (comment)

Fixes #277
    @jaitaiwan
    jaitaiwan committed Jun 15, 2024
    Configuration menu
    Copy the full SHA
    19d52f4 View commit details
    Browse the repository at this point in the history
Loading