From 96879e75f017741e4a987d0c217a5ad16b8676e9 Mon Sep 17 00:00:00 2001
From: Ivo Oskamp <ivooskamp@oskamp.info>
Date: Thu, 28 May 2026 15:56:26 +0200
Subject: [PATCH] auth: add cookie config (name, Secure flag, SameSite)

---
 containers/clearview/src/clearview_app/config.py | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/containers/clearview/src/clearview_app/config.py b/containers/clearview/src/clearview_app/config.py
index f0f19e4..c530f23 100644
--- a/containers/clearview/src/clearview_app/config.py
+++ b/containers/clearview/src/clearview_app/config.py
@@ -36,3 +36,8 @@ SCAN_HTTP_BACKOFF_SEC = _int_env("SCAN_HTTP_BACKOFF_SEC", 2)
 
 SCAN_LIST_PAGE_SIZE = _int_env("SCAN_LIST_PAGE_SIZE", 200)
 SCAN_MAX_ITEMS_PER_LIST = _int_env("SCAN_MAX_ITEMS_PER_LIST", 10000)
+
+# Auth cookie settings (override via env)
+COOKIE_NAME = "clearview_session"
+COOKIE_SECURE = os.environ.get("COOKIE_SECURE", "true").lower() != "false"
+COOKIE_SAMESITE = "lax"