From 167a0593de1858eb3e0251c9b241a126e59a2508 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniele=20Vigan=C3=B2?= <daniele@vigano.me>
Date: Thu, 15 Jan 2026 10:02:57 +0100
Subject: [PATCH] Cookies hardening

---
 ram/ram/settings.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/ram/ram/settings.py b/ram/ram/settings.py
index 6837962..6ab8a28 100644
--- a/ram/ram/settings.py
+++ b/ram/ram/settings.py
@@ -109,6 +109,12 @@ DEFAULT_AUTO_FIELD = "django.db.models.BigAutoField"
 MEDIA_URL = "media/"
 MEDIA_ROOT = STORAGE_DIR / "media"
 
+# cookies hardening
+SESSION_COOKIE_SECURE = True
+SESSION_COOKIE_HTTPONLY = True
+CSRF_COOKIE_SECURE = True
+CSRF_COOKIE_HTTPONLY = True
+
 # django-ram REST API settings
 REST_ENABLED = False  # Set to True to enable the REST API
 REST_FRAMEWORK = {