bouncer icon indicating copy to clipboard operation
bouncer copied to clipboard
verified publisher icon ianwalter

HttpOnly cookies

Open ianwalter opened this issue 9 years ago • 2 comments

Document how to use HttpOnly cookies with Bouncer (and make it easier to do so if necessary) to prevent XSS attacks as described in http://www.redotheweb.com/2015/11/09/api-security.html.

ianwalter avatar Mar 31 '17 17:03 ianwalter

Stumbled upon your project @ianwalter, like the idea behind the project. Are you still conisidering maintaining this project and what sort of help you need here! are you planning to implement something similar to Plug.Session cookie implementation here.

exploreitspace avatar Jan 03 '18 02:01 exploreitspace

Yes, I still want to implement this feature, but it's not very high on the priority list so I don't know when it will land. PRs welcome!

ianwalter avatar Jan 03 '18 02:01 ianwalter