implement CSRF protection by adding token generation, validation, and cookie management in login flows

2026-03-17 22:36:17 +00:00 · 2026-03-16 20:23:18 -03:00
parent ebbffca21d
commit ca63b87123
8 changed files with 214 additions and 24 deletions
--- a/containers/auth-gateway/auth_gateway/settings.py
+++ b/containers/auth-gateway/auth_gateway/settings.py
@@ -10,6 +10,7 @@ class Settings(BaseSettings):
    config_dir: Path = Field(default=Path("/caddy_json_export"))
    database_path: Path = Field(default=Path("/data/auth-gateway.sqlite3"))
    cookie_name: str = Field(default="auth_gateway_session")
+    csrf_cookie_name: str = Field(default="auth_gateway_csrf")
    external_path: str = Field(default="/auth-gateway")
    secure_cookies: bool = Field(default=True)
    session_default_minutes: int = Field(default=720)