Skip to content
This repository has been archived by the owner on Nov 18, 2022. It is now read-only.

Commit

Permalink
#485: HttpOnly for cookies
Browse files Browse the repository at this point in the history 
to improve security
  • Loading branch information
@hugbug
hugbug committed Jan 25, 2018
1 parent bf53c6e commit cf0d086
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion daemon/remote/WebServer.cpp
View file
Expand Up @@ -466,7 +466,7 @@ void WebProcessor::SendBodyResponse(const char* body, int bodyLen, const char* c
"Access-Control-Max-Age: 86400\r\n"
"Access-Control-Allow-Headers: Content-Type, Authorization\r\n"
"Set-Cookie: Auth-Type=%s\r\n"
"Set-Cookie: Auth-Token=%s\r\n"
"Set-Cookie: Auth-Token=%s; HttpOnly\r\n"
"Content-Length: %i\r\n"
"%s" // Content-Type: xxx
"%s" // Content-Encoding: gzip
Expand Down

0 comments on commit cf0d086

Please sign in to comment.