[wp-trac] [WordPress Trac] #36785: Filter for httponly cookie
WordPress Trac
noreply at wordpress.org
Thu May 12 09:01:50 UTC 2016
#36785: Filter for httponly cookie
------------------------------------+----------------------
Reporter: IAmJulianAcosta | Owner:
Type: feature request | Status: closed
Priority: normal | Milestone:
Component: Login and Registration | Version: 4.5.2
Severity: normal | Resolution: wontfix
Keywords: | Focuses:
------------------------------------+----------------------
Changes (by rmccue):
* keywords: 2nd-opinion close =>
* status: new => closed
* resolution: => wontfix
* milestone: Awaiting Review =>
Comment:
Agreed; if you need these in your JS, use a different cookie.
I'm also concerned that allowing this ability would allow plugins, themes,
etc to set this without the user's knowledge and downgrade their security.
It feels like the wrong way to solve this. :)
--
Ticket URL: <https://core.trac.wordpress.org/ticket/36785#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list