Dorian 6e8a618cbc fix: SameSite=Strict → Lax for session cookies (fixes iframe fetch) ...

SameSite=Strict prevents cookies from being sent when iframe content
(like the LND UI at /app/lnd/) fetches endpoints on the parent origin
(/lnd-connect-info). Lax still protects against CSRF on POST requests
but allows same-site GET navigations and fetches from iframes.

This was the root cause of "Failed to fetch" on LND Connect.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-19 15:30:58 +00:00

..

.cargo

refactor: update dependencies and remove unused code

2026-03-12 00:19:30 +00:00

archipelago

fix: SameSite=Strict → Lax for session cookies (fixes iframe fetch)

2026-03-19 15:30:58 +00:00

container

security+feat: v1.3.0 — pentest remediation, container reliability, UI overhaul

2026-03-19 12:44:31 +00:00

container-init

mid coding commit

2026-01-24 22:59:20 +00:00

helpers

mid coding commit

2026-01-24 22:59:20 +00:00

js-engine

mid coding commit

2026-01-24 22:59:20 +00:00

models

mid coding commit

2026-01-24 22:59:20 +00:00

parmanode

feat: complete Phase 1 foundation hardening + three-mode UI design doc

2026-03-04 05:23:42 +00:00

performance

Update archipelago: API, auth, container, parmanode, performance, security

2026-01-27 22:27:17 +00:00

security

fix: Phase 7 — key zeroization, OsRng, checked arithmetic, TOTP rate limits

2026-03-18 01:00:57 +00:00

.env.example

Add comprehensive installation and setup documentation

2026-01-27 17:18:21 +00:00

.env.production

Update README and configuration for macOS support

2026-01-28 11:12:19 +00:00

Cargo.lock

fix: BUG-33 CPU threshold, TASK-27 tab icons, TASK-36 iframe errors

2026-03-18 19:24:52 +00:00

Cargo.toml

Refactor configuration and scripts for Archipelago backend and ISO build

2026-02-01 05:42:05 +00:00