22 lines
389 B
Go
22 lines
389 B
Go
package csrf
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"synlotto-website/internal/platform/config"
|
|
|
|
"github.com/justinas/nosurf"
|
|
)
|
|
|
|
func Wrap(h http.Handler, cfg config.Config) http.Handler {
|
|
cs := nosurf.New(h)
|
|
cs.SetBaseCookie(http.Cookie{
|
|
Name: cfg.CSRF.CookieName,
|
|
Path: "/",
|
|
HttpOnly: true,
|
|
Secure: cfg.HttpServer.ProductionMode,
|
|
SameSite: http.SameSiteLaxMode,
|
|
})
|
|
return cs
|
|
}
|