Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Log when SafeSessionMiddleware deletes cookies

Browse Source
This commit is contained in:
David Ormsbee
2019-02-22 16:35:27 -05:00
parent 61923a7369
commit fc52fcccab
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
openedx/core/djangoapps/safe_sessions/middleware.py
View File

@@ -333,7 +333,7 @@ class SafeSessionMiddleware(SessionMiddleware):
_mark_cookie_for_deletion(request)
if _is_cookie_marked_for_deletion(request):
_delete_cookie(response) # Step 4
_delete_cookie(request, response) # Step 4
return response
@@ -454,11 +454,15 @@ def _is_cookie_present(response):
)
def _delete_cookie(response):
def _delete_cookie(request, response):
"""
Delete the cookie by setting the expiration to a date in the past,
while maintaining the domain, secure, and httponly settings.
"""
log.warning(
u"SafeCookieData is deleting session cookie for user %d",
request.user.id
)
response.set_cookie(
settings.SESSION_COOKIE_NAME,
max_age=0,