senooken JP Social
  • FAQ
  • Login
senooken JP Socialはsenookenの専用分散SNSです。

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. はいこん (hcm@mastodon.home.js4.in)'s status on Sunday, 23-Sep-2018 21:12:26 JST はいこん はいこん

    “CookieのSameSite属性 | "><s>はい</s>” <https://blog.ssrf.in/post/samesite-cookie/>
    クッキー周りの変更が<https://github.com/tootsuite/mastodon/pull/8626>で入ったから何かと思えばSameSiteって仕様があるのか

    In conversation Sunday, 23-Sep-2018 21:12:26 JST from mastodon.home.js4.in permalink

    Attachments


    2. Domain not in remote thumbnail source whitelist: avatars2.githubusercontent.com
      feat(cookies): Use the same-site attribute to lax by sorin-davidoi · Pull Request #8626 · tootsuite/mastodon
      from GitHub
      CSFR-prevention is already implemented but adding this doesn't hurt. A brief introduction to Same-Site cookies (and the difference between strict and lax) can be found at https://blog.mozilla.o...

    Feeds

    • Activity Streams
    • RSS 2.0
    • Atom
    • Help
    • About
    • FAQ
    • TOS
    • Privacy
    • Source
    • Version
    • Contact

    senooken JP Social is a social network, courtesy of senooken. It runs on GNU social, version 2.0.2-beta0, available under the GNU Affero General Public License.

    Creative Commons Attribution 3.0 All senooken JP Social content and data are available under the Creative Commons Attribution 3.0 license.