Skip to content

Commit bbf8836

Browse files
friekfriek
committed
Fixed invalid default value for SESSION_DOMAIN
As from commit 522cbd4 the default value for SESSION_DOMAIN is now set to "apc" if it's not supplied. This will lead to CSRF token validation failures as described on cachethq/cachet#2741 (comment) With this commit the SESSION_DOMAIN will just be empty when not explicitly configured.
1 parent 0c772a5 commit bbf8836

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

entrypoint.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -104,7 +104,7 @@ initialize_system() {
104104
CACHE_DRIVER=${CACHE_DRIVER:-apc}
105105

106106
SESSION_DRIVER=${SESSION_DRIVER:-apc}
107-
SESSION_DOMAIN=${SESSION_DOMAIN:-apc}
107+
SESSION_DOMAIN=${SESSION_DOMAIN:-}
108108
SESSION_SECURE_COOKIE=${SESSION_SECURE_COOKIE:-}
109109

110110
QUEUE_DRIVER=${QUEUE_DRIVER:-database}

0 commit comments

Comments
 (0)