Cookie prefix checks
woodruffw opened this issue · 2 comments
woodruffw commented
Similar to #56: Cookie prefixes are another proposed enhancement to cookie security. We should add appropriate checks for __Host
and __Secure
.
Resources:
- IETF draft: https://tools.ietf.org/html/draft-ietf-httpbis-cookie-prefixes-00
- Tough Cookies: https://scotthelme.co.uk/tough-cookies/
GatewayBit commented
May I take on this task?
woodruffw commented
Yes, please do!