+ secure_cookies = Pleroma.Config.get([__MODULE__, :secure_cookie_flag])
+
+ cookie_name =
+ if secure_cookies,
+ do: "__Host-pleroma_key",
+ else: "pleroma_key"
+
+ same_site =
+ if Pleroma.Config.get([:auth, :oauth_consumer_enabled]) do
+ # Note: "SameSite=Strict" prevents sign in with external OAuth provider
+ # (there would be no cookies during callback request from OAuth provider)
+ "SameSite=Lax"
+ else
+ "SameSite=Strict"
+ end
+