Closed bwaidelich closed 3 years ago
Currently the SetJwtCookieMiddleware always creates cookies that are not httpOnly. This should be configurable (per service) for added security.
SetJwtCookieMiddleware
httpOnly
Currently the
SetJwtCookieMiddleware
always creates cookies that are nothttpOnly
. This should be configurable (per service) for added security.