Some workarounds:
http://serverfault.com/questions/496749/in-nginx-reverse-proxy-how-to-set-the-secure-flag-for-cookies
https://maximilian-boehm.com/hp2134/NGINX-as-Proxy-Rewrite-Set-Cookie-to-Secure-and-HttpOnly.htm
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,271052,271120#msg-271
The 'secure' option is not working?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,271052,271119#msg-271119
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
On Mon, Nov 21, 2016 at 05:27:40PM -0500, hheiko wrote:
Hi there,
> My cookie from the sticky modules comes flagged as unsecure, I can delete
> it and close the browser, no change.
> You can check it out at https://wahl.hannover-stadt.de and then check the
> "route" cookie.
$ curl -s -i https:/
My cookie from the sticky modules comes flagged as unsecure, I can delete
it and close the browser, no change.
You can check it out at https://wahl.hannover-stadt.de and then check the
"route" cookie.
Heiko
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,271052,271104#msg-271104
On Sat, Nov 19, 2016 at 01:08:24PM -0800, Gerard Mattison wrote:
Hi there,
> One of the issue I having is that when I ran a vulnerability assessment,
> the "route" cookie is coming up as not secure.
It looks like the cookie should be secure.
Is there any change that you used this browser to acc
Hello all,
I am using nginx with nginx-sticky-module-ng for distributing the load
among servers per specific user session for my java application.
One of the issue I having is that when I ran a vulnerability assessment,
the "route" cookie is coming up as not secure.
Attached image shows the issu