Default Varnish VCL template only allows cookies in the admin app (fo…

…r login etc.)
AtomGraph · Nov 21, 2024 · cb4ece0 · cb4ece0
1 parent f115a97
commit cb4ece0
Showing 1 changed file with 3 additions and 9 deletions.
diff --git a/platform/varnish.vcl.template b/platform/varnish.vcl.template
@@ -57,15 +57,9 @@ sub vcl_recv {
         return (pass);
     }
     if (req.http.Cookie) {
-        # explicitly allow only cookies required by LDH server-side
-        set req.http.Cookie = ";" + req.http.Cookie;
-        set req.http.Cookie = regsuball(req.http.Cookie, "; +", ";");
-        set req.http.Cookie = regsuball(req.http.Cookie, ";(LinkedDataHub\.state|LinkedDataHub\.id_token)=", "; \1=");
-        set req.http.Cookie = regsuball(req.http.Cookie, ";[^ ][^;]*", "");
-        set req.http.Cookie = regsuball(req.http.Cookie, "^[; ]+|[; ]+$", "");
-
-        if (req.http.cookie ~ "^\s*$") {
-            unset req.http.cookie;
+        # only allow cookies in the admin app (for login etc.)
+        if(req.url !~ "^/admin(/.*)?$") {
+            unset req.http.Cookie;
         }
     }