multitenant: use unique name for authentic opened session cookie (#33603)

2019-06-01 20:03:17 +02:00 · 2019-06-01 20:03:17 +02:00 · e70d32b5a6
parent 76ce7c38f3
commit e70d32b5a6
1 changed files with 8 additions and 1 deletions
--- a/hobo/multitenant/settings_loaders.py
+++ b/hobo/multitenant/settings_loaders.py
@ -274,7 +274,14 @@ class CookieNames(object):
        domain_hash = hashlib.md5(smart_bytes(tenant.domain_url)).hexdigest()[:6]
        tenant_settings.CSRF_COOKIE_NAME = 'csrftoken-%s' % domain_hash
        tenant_settings.SESSION_COOKIE_NAME = 'sessionid-%s' % domain_hash
-
+        # unique but common name for authentic opened session cookie name
+        if getattr(tenant_settings, 'TEMPLATE_VARS', None):
+            idp_url = tenant_settings.TEMPLATE_VARS.get('idp_url')
+            if idp_url:
+                idp_hash = hashlib.md5(smart_bytes(idp_url)).hexdigest()[:6]
+                cookie_name = 'a2-opened-session-%s' % idp_hash
+                tenant_settings.A2_OPENED_SESSION_COOKIE_NAME = cookie_name
+                tenant_settings.MELLON_OPENED_SESSION_COOKIE_NAME = cookie_name

 #
 # Specific loaders