ISSUE
Security scanning software may flag the lack of the secure attribure in cookies; even when other architetural components ensure that cookies are only sent by the application when communicating over TLS encrypted HTTPS.
RESOLUTION
Ensure the attribute is set, even when sending over HTTPS
ISSUE Security scanning software may flag the lack of the secure attribure in cookies; even when other architetural components ensure that cookies are only sent by the application when communicating over TLS encrypted HTTPS.
RESOLUTION Ensure the attribute is set, even when sending over HTTPS