Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Allow to use session type cookie #905

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from

Conversation

ViliusS
Copy link

@ViliusS ViliusS commented Mar 12, 2023

This patch allows to use Session cookies instead of expirable ones when expiryDays is set to 0.

@northlandz786
Copy link

Session type cookies are temporary cookies that are stored in the browser's memory and are deleted when the browser is closed. These cookies are commonly used to store session identifiers and other session-related data, which is used to maintain user sessions on a website.

To allow the use of session type cookies, you will need to modify the server-side code of your website or web application to set the appropriate cookie headers in the HTTP response.

In most web frameworks, this can be achieved by adding the HttpOnly and Secure flags to the session cookie. The HttpOnly flag prevents the cookie from being accessed by client-side scripts, which helps prevent cross-site scripting (XSS) attacks. The Secure flag ensures that the cookie is only transmitted over HTTPS, which helps protect the cookie from being intercepted by attackers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants