[Koha-bugs] [Bug 33259] Optionally set SameSite attribute of cookie to Strict
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Aug 2 05:44:29 CEST 2023
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=33259
--- Comment #22 from Alex Buckley <alexbuckley at catalyst.net.nz> ---
(In reply to David Cook from comment #21)
> It might be worth adding that "None" has security implications and is not
> recommended?
>
> Overall, I think only "Lax" and "Strict" makes sense for Koha with "Strict"
> being preferable overall, although it would need some testing, especially
> with identity providers...
That's a great idea to add that None has security implications and isn't
recommended, thanks for suggesting that David,
Will add that to the syspref description in the yaml file.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list