4.x
>>
>> Best regards,
>>
>> Pierre Smits
>>
>> *OFBiz Extensions Marketplace*
>> http://oem.ofbizci.net
>>
>> On Thu, Sep 24, 2015 at 11:27 AM, Deepak Dixit <
>> deepak.di...@hotwaxsystems.com> wrote:
>>
>>> Hi
Hi Dev,
I would like to propose some security enhancement at web-app level.
IMO we have to enhance sessionId and cookie tracking. As per current
implementation:
- The cookie containing the session identifier is not secure
- The session identifier is transmitted in the query string of the URL
regards,
Pierre Smits
*OFBiz Extensions Marketplace*
http://oem.ofbizci.net
On Thu, Sep 24, 2015 at 11:27 AM, Deepak Dixit <
deepak.di...@hotwaxsystems.com> wrote:
Hi Dev,
I would like to propose some security enhancement at web-app level.
IMO we have to enhance sessionId and cookie tr
AM, Deepak Dixit <
deepak.di...@hotwaxsystems.com> wrote:
> Hi Dev,
>
> I would like to propose some security enhancement at web-app level.
> IMO we have to enhance sessionId and cookie tracking. As per current
> implementation:
> - The cookie containing the session
