ofbiz-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jacques Le Roux (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (OFBIZ-6766) Secure HTTP headers
Date Thu, 19 Oct 2017 11:51:00 GMT

    [ https://issues.apache.org/jira/browse/OFBIZ-6766?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16210906#comment-16210906
] 

Jacques Le Roux commented on OFBIZ-6766:
----------------------------------------

At r1812623 I reverted r1812540 ("Set-Cookie", "SameSite=strict") that I also forgot to report
here.
It does not fit with OFBiz which then asks you to login on any action, even when using "Set-Cookie",
"SameSite=lax"


> Secure HTTP headers
> -------------------
>
>                 Key: OFBIZ-6766
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-6766
>             Project: OFBiz
>          Issue Type: Sub-task
>          Components: framework
>    Affects Versions: Trunk
>            Reporter: Jacques Le Roux
>            Assignee: Jacques Le Roux
>             Fix For: Upcoming Release
>
>
> I have created a wiki page for this https://cwiki.apache.org/confluence/display/OFBIZ/How+to+Secure+HTTP+Headers



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message