[Koha-bugs] [Bug 9102] [SECURITY] We should set httponly on our session cookie
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Feb 1 09:56:49 CET 2013
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=9102
--- Comment #18 from M. de Rooy <m.de.rooy at rijksmuseum.nl> ---
Tested. See the HttpOnly flag in Firebug. Checked cookie processing in IE9 and
FF with opac language and session. Also added an item without problems.
Code looks good to me.
Passed QA
Note for RM: Will take a look too at the related report of Galen.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list