Details
-
Suggestion
-
Resolution: Duplicate
-
None
-
None
Description
Makes them unusable by injected JS.
Note: there may be some complications with this; talk to Matt Quail about Tomcat.
Attachments
Issue Links
- duplicates
-
CWD-1848 crowd.token_key cookie should be HttpOnly
- Closed