systemlord01 opened a new issue #1080: URL: https://github.com/apache/cordova-android/issues/1080
# Bug Report ## Problem ### What is expected to happen? We expect cordova to use safe methods that are not depricated to save cookies. ### What does actually happen? Cordova uses a depricated API that is a known security issue. ## Information In the following file a deprecated api is used with a known security issue (setAcceptFileSchemeCookies). https://github.com/apache/cordova-android/blob/master/framework/src/org/apache/cordova/engine/SystemCookieManager.java The following docs mention it is deprecated and a security issues. https://developer.android.com/reference/android/webkit/CookieManager#setAcceptFileSchemeCookies(boolean) ### Command or Code <!-- What command or code is needed to reproduce the problem? --> Use cordova. ### Environment, Platform, Device <!-- In what environment, on what platform or on which device are you experiencing the issue? --> Android ### Version information Cordova latest. Corodava-android. ## Checklist - [ x] I searched for existing GitHub issues - [ x] I updated all Cordova tooling to most recent version - [ x] I included all the necessary information above ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
