Improved cookie security

The cookie swpm_session is currently not using the httpOnly and secure cookie flag. I cannot see that the cookie is used by any JavaScript, therefore the HttpOnly flag should be okay. If HTTPS is available, the secure flag would also be a good idea.

I could not find an issue tracker or development repo where I could raise a ticket or contribute a PR. If there is one, please let me know.

• This topic was modified 2 years ago by svenseeberg.
• This topic was modified 2 years ago by svenseeberg.
• This topic was modified 2 years ago by svenseeberg.