democracy.io icon indicating copy to clipboard operation
democracy.io copied to clipboard
verified publisher icon sinak

set secure flag on cookies

Open lenazun opened this issue 7 years ago • 0 comments

Starchy says:

I spotted some sites that aren't setting the Secure flag on their cookies, mostly session cookies. This isn't a huge problems since we're setting HSTS and redirecting HTTP to HTTPS, but it's a best practice we should implement when possible.

democracy.io* Set-Cookie: XSRF-TOKEN=undefined; Path=/

lenazun avatar Mar 07 '18 22:03 lenazun