Feature #87301

Automatically use secure cookies

Added by Oliver Hader over 2 years ago. Updated 5 months ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
Security
Start date:
2018-12-27
Due date:
% Done:

100%

Estimated time:
PHP Version:
Tags:
Complexity:
Sprint Focus:
Needs Decision

Description

TYPO3 allows to make use of security cookies by setting according TYPO3_CONF_VARS [SYS][cookieSecure] in Install Tool. In order to apply strong security defaults, this setting should always be active and use security cookies when HTTPS is used.

#1

Updated by Oliver Hader over 2 years ago

  • Assignee deleted (Oliver Hader)
#2

Updated by Georg Ringer about 1 year ago

  • Sprint Focus set to PRC
#3

Updated by Benni Mack about 1 year ago

  • Status changed from New to Needs Feedback

Should we set the option to "2" by default?

#4

Updated by Benni Mack about 1 year ago

  • Sprint Focus changed from PRC to Needs Decision
#5

Updated by Gerrit Code Review 8 months ago

  • Status changed from Needs Feedback to Under Review

Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/65695

#6

Updated by Gerrit Code Review 8 months ago

Patch set 2 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/65695

#7

Updated by Gerrit Code Review 8 months ago

Patch set 3 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/65695

#8

Updated by Benni Mack 8 months ago

  • Status changed from Under Review to Resolved
  • % Done changed from 0 to 100
#9

Updated by Benni Mack 5 months ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF