Actions
Bug #95301
open
Cookie be_typo_user will be set twice in response of a not successful login request
Status:
New
Priority:
Should have
Assignee:
-
Category:
Backend User Interface
Target version:
-
Start date:
2021-09-21
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
10
PHP Version:
7.4
Tags:
Cookie be_typo_user
Complexity:
Is Regression:
Sprint Focus:
Description
On Login (with wrong credentials) the cookie be_typo_user will be set twice in the response.
We check the HTTP-traffic with the Extension HTTP-Tracker for Chrome (Settings:
don't optimize cookies).
The error was reported on a security check of our site and client demands, that all errors, that were reported in the security check, will be fixed.
Typo3: 10.4.14
Apache: 2.4
PHP: 7.4
be_typo_user 3d82b365875ecfffc59e1bb8067abc3f; path=/; httponly; samesite=strict; HTTPOnly; Secure
be_typo_user deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HTTPOnly; Secure
No data to display
Actions