HttpOnly
Moderator: crythias
-
srivatsatatti
- Znuny newbie
- Posts: 85
- Joined: 25 Jan 2011, 06:54
- Znuny Version: OTRS 3
- Company: eStomi Technologies Pvt Ltd
- Contact:
Re: HttpOnly
sorry, can you please specify your question?
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
-
srivatsatatti
- Znuny newbie
- Posts: 85
- Joined: 25 Jan 2011, 06:54
- Znuny Version: OTRS 3
- Company: eStomi Technologies Pvt Ltd
- Contact:
Re: HttpOnly
Need to Enable HTTPOnly feature for session cookies.
OTRS 3.2.x, Linux Ubuntu, Mysql 5.1.
Re: HttpOnly
you already wrote this... but thats not explaining your question
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
-
srivatsatatti
- Znuny newbie
- Posts: 85
- Joined: 25 Jan 2011, 06:54
- Znuny Version: OTRS 3
- Company: eStomi Technologies Pvt Ltd
- Contact:
Re: HttpOnly
In order to avoid accessing cookies through client side scripting, I want to enable cookie attribute to Httponly
OTRS 3.2.x, Linux Ubuntu, Mysql 5.1.
Re: HttpOnly
This would require some development but is not needed as OTRS uses a ChallengeToken
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com