From 469a757646c123b10150b9b8306570e2118efdc4 Mon Sep 17 00:00:00 2001
From: ntr <ntr@smokestack.io>
Date: Tue, 14 Jan 2020 17:42:04 +1000
Subject: [PATCH] samesite none so people can login from iframe

---
 server/src/http.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/src/http.rs b/server/src/http.rs
index 34b3b994..cb245e7f 100644
--- a/server/src/http.rs
+++ b/server/src/http.rs
@@ -354,7 +354,7 @@ fn recover(req: &mut Request) -> IronResult<Response> {
 
     let v = Cookie::build(TOKEN_HEADER, token)
         .http_only(true)
-        .same_site(SameSite::Strict)
+        .same_site(SameSite::None)
         .path("/")
         .max_age(Duration::weeks(1)) // 1 week aligns with db set
         .finish();