Details
-
Task
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.0.2
-
None
-
None
Description
Ambari should set the following flags for session cookies.
1) https://www.owasp.org/index.php/HttpOnly
2) https://www.owasp.org/index.php/SecureFlag
#2 only needs to be set when people configure for Ambari HTTPS
Attachments
Attachments
Issue Links
- is a clone of
-
AMBARI-11129 Set HttpOnly and Secure flags for Ambari session cookies
- Resolved
- links to