Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 6.1.6, 6.2-OD-6
Affects Version/s: 6.1.1
Component/s: None
Labels:

Introduced in Version:
6.01
CVSS Score:
2.6
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

To prevent against man in the middle attacks the xsrf cookie token should have the 'secure' attribute set.

Attachments

Issue Links

is duplicated by

JRASERVER-40949 Provide atlassian.xsrf.token with secure flag

Closed

is related to

JRASERVER-65735 Update the proxy documentation around setting the appropriate attributes when JIRA is behind a web server or proxy and is available by https://

Gathering Interest

mentioned in: Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: David Black

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 21/Oct/2013 3:42 AM

Updated:: 30/Jun/2022 12:15 AM

Resolved:: 12/Feb/2015 2:08 PM