Hi All. Our security teams have suggested that we add the HTTPOnly attribute to the cookie that is getting written by the GoCD server. Could someone share the details on how to enable this for various versions ranging from GoCD 15.1 to 17.6 ?
Is jetty.xml the file to update and if yes, what is the format to add the attribute? Thanks and Regards Raja -- You received this message because you are subscribed to the Google Groups "go-cd" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
