SEC-1734: Use secure cookie by default in RememberMeServices for a secure connection #1971

Closed
spring-issuemaster opened this Issue May 9, 2011 · 1 comment

1 participant

@spring-issuemaster

Migrated from SEC-1734

@spring-issuemaster

Luke Taylor said:

AbstractRememberMeServices will now use a secure cookie by default if the connection is secure. This can be overridden by setting the "useSecureCookie" property.

@spring-issuemaster spring-issuemaster added this to the 3.1.0.RC3 milestone Feb 5, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment