** Changed in: mahara
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/843573
Title:
Enable secure cookies if wwwroot is set to HTTPS
Status in Mahara ePortfolio:
Fix Released
Bug description:
To further increase our protection against https-to-http downgrades,
we should only set Secure Cookies (the ones that browsers will only
send over HTTPS) when the wwwroot points to https or when a ssl proxy
is enabled.
To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/843573/+subscriptions
_______________________________________________
Mailing list: https://launchpad.net/~mahara-contributors
Post to : [email protected]
Unsubscribe : https://launchpad.net/~mahara-contributors
More help : https://help.launchpad.net/ListHelp
