Red Hat Bugzilla – Bug 429495
Add cookie_secure param to enforce sending cookies over secure connection
Last modified: 2013-06-23 22:20:49 EDT
Add new param called cookie_secure to Auth code to enforce cookies only being
sent over secure (SSL) connection.
Created attachment 292326 [details]
Patch to add cookie_secure param to auth code
Worked 2 hours on this patch.
Instead of adding a new cookie_secure param, we went the route of enforcing
secure cookie whenever the 'ssl' param is set to either 'authenticated sessions'
or 'always' so this can be closed.