Security Concers, episode 2

Floriansylvain / GoCMS

Lightweight headless CMS written in Go. It leverages a clean, DDD architecture, the go-chiHTTP router, and SQLite for simplicity and performance. With easy setup, it offers an efficient, user-friendly interface.

1 stars 0 forks source link

Security Concers, episode 2 #6

Closed Floriansylvain closed 1 year ago

Floriansylvain commented 1 year ago

Storing JWT raw token in document.cookie is very bad. Should use httpOnly cookie instead.

Floriansylvain commented 1 year ago

Fixed in a184154