[ https://issues.apache.org/jira/browse/MYFACES-3177?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jakob Korherr resolved MYFACES-3177. ------------------------------------ Resolution: Fixed Fix Version/s: 2.1.2-SNAPSHOT 2.0.8-SNAPSHOT > Add secure flag for cookies if the page is accessed over a secure protocol > -------------------------------------------------------------------------- > > Key: MYFACES-3177 > URL: https://issues.apache.org/jira/browse/MYFACES-3177 > Project: MyFaces Core > Issue Type: Improvement > Affects Versions: 2.0.7, 2.1.1 > Reporter: Carsten Dimmek > Assignee: Jakob Korherr > Priority: Minor > Fix For: 2.0.8-SNAPSHOT, 2.1.2-SNAPSHOT > > > We did some security tests for our application and one of the results was > that for example the oam.Flash.RENDERMAP.TOKEN should be marked as secure if > the page is accessed via https. > http://download.oracle.com/javaee/6/api/javax/servlet/http/Cookie.html#setSecure(boolean) -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira