Set the HttpOnly flag for the page auto-refresh tokens (#4363) (d92b172a) · Commits · github / jenkinsci / jenkins

Commit d92b172a authored Nov 22, 2019 by

StefanSpieker Committed by Oleg Nenashev Nov 22, 2019

Set the HttpOnly flag for the page auto-refresh tokens (#4363)



* set HttpOnly flag to prevent cookie read by a malicious script in browser

* Update core/src/main/java/hudson/Functions.java

Co-Authored-By: Wadeck Follonier <Wadeck@users.noreply.github.com>

parent fd02997e

Hide whitespace changes

Inline Side-by-side

Please register or to comment