Task #89877
closed
Cookie "lastLoginProvider" appears to serve no true purpose
100%
Description
In the ongoing pursuit of making TYPO3's anonymous requests cookie free, I reviewed the cookies used by the authentication system and found that "lastLoginProvider" does not appear to have a true purpose:
- The parameter is transferred as URI parameter as well
- The cookie is used as a shortcut alternative to resolving the login provider anew
In my opinion the cookie can be removed.
Updated by Gerrit Code Review almost 5 years ago
- Status changed from New to Under Review
Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/62556
Updated by Gerrit Code Review almost 5 years ago
Patch set 2 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/62556
Updated by Gerrit Code Review almost 5 years ago
Patch set 3 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/62556
Updated by Susanne Moog over 4 years ago
- Related to Bug #90568: BE user cookie set regardless of session added
Updated by Gerrit Code Review over 4 years ago
Patch set 4 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/62556
Updated by Anonymous over 4 years ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100
Applied in changeset d7d8bff4a13c4bbffd2161387745e5cf6f00fcd7.
Updated by