jab2870/Dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

BIN: Adds SameSite check in analyse-headers script

Browse source 
The script will now warn you if the SameSite option is not set to Strict
on cookies.
This commit is contained in:
Jonathan Hodgson 2020-12-01 21:17:34 +00:00
parent c384064641
commit fb5d25dc6c
1 changed files with 7 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

7
bin/.bin/webtest/analyse-headers
View file

@ -249,6 +249,13 @@ sent over unencrypted channels\n\n"
ret=$((ret>1 ? ret : 1)) ret=$((ret>1 ? ret : 1))
fi fi
if ! echo "$value" | grep -q "SameSite=Strict"; then
output+="SameSite controls whether a cookie is sent with cross-origin requests, \
providing some protection against cross-site request forgery attacks.
Strict means the browser sends the cookie only for same-site requests\n\n"
ret=$((ret>1 ? ret : 1))
fi
if [ "$ret" -gt 0 ]; then if [ "$ret" -gt 0 ]; then
echo "Set-Cookie: $cookieName" | drawInBox echo "Set-Cookie: $cookieName" | drawInBox
echo -e "$output" echo -e "$output"