Details
-
Suggestion
-
Resolution: Duplicate
-
None
Description
NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion.
atlassian.xsrf.token cookie needs the 'Secure' attribute set (when JIRA is configured to use HTTPS), to prevent interception of said cookie's plain text.
Attachments
Issue Links
- is related to
-
JRASERVER-40949 Provide atlassian.xsrf.token with secure flag
- Closed