search

radarlabs / radar-sdk-js

Web JavaScript SDK for Radar, the leading geofencing and location tracking platform
https://radar.com
Apache License 2.0
42 stars 11 forks source link

add secure and httponly flags #65

Closed joekuttickal closed 2 years ago

joekuttickal commented 2 years ago

h1 report: https://hackerone.com/reports/1582067

joekuttickal commented 2 years ago

https://app.shortcut.com/radarlabs/story/10565/lack-of-secure-and-httponly-flags-in-cookies

shortcut-integration[bot] commented 2 years ago

This pull request has been linked to Shortcut Story #10565: Lack of Secure and HttpOnly flags in cookies.

joekuttickal commented 2 years ago

closing this one since we decided to use sessionStorage instead of cookies