From 0351bef203f9022ed065ffe0e0b4b6a3ee369a84 Mon Sep 17 00:00:00 2001
From: Timothee Legros <timothee@ualberta.ca>
Date: Wed, 23 Oct 2024 23:13:07 +0300
Subject: [PATCH] signable headers and sameSite lax

---
 libs/adapters/src/blobStorage/util.ts | 1 +
 packages/commonwealth/main.ts         | 1 +
 2 files changed, 2 insertions(+)

diff --git a/libs/adapters/src/blobStorage/util.ts b/libs/adapters/src/blobStorage/util.ts
index d0591bf1337..037743d65e7 100644
--- a/libs/adapters/src/blobStorage/util.ts
+++ b/libs/adapters/src/blobStorage/util.ts
@@ -31,6 +31,7 @@ export async function getSignedUrl_S3sdk(
     }),
     {
       expiresIn: options.ttl,
+      signableHeaders: new Set(['content-type']),
     },
   );
 }
diff --git a/packages/commonwealth/main.ts b/packages/commonwealth/main.ts
index 9161d2afdc2..e6775d61898 100644
--- a/packages/commonwealth/main.ts
+++ b/packages/commonwealth/main.ts
@@ -82,6 +82,7 @@ export async function main(
     saveUninitialized: false,
     cookie: {
       maxAge: config.AUTH.SESSION_EXPIRY_MILLIS,
+      sameSite: 'lax',
     },
   });