You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Should the nhsuk-cookie-consent cookie have the secure attribute? Guidance from GDS here says "You should only send cookies with the Secure attribute and, when appropriate, the HttpOnly attribute. These flags provide additional assurances about how browsers should handle cookies."
Currently the nhsuk-cookie-consent cookie doesn't have secure checked, as can be seen in the attached screenshot.
Cheers.
The text was updated successfully, but these errors were encountered:
Hi,
Should the nhsuk-cookie-consent cookie have the secure attribute? Guidance from GDS here says "You should only send cookies with the Secure attribute and, when appropriate, the HttpOnly attribute. These flags provide additional assurances about how browsers should handle cookies."
Currently the nhsuk-cookie-consent cookie doesn't have secure checked, as can be seen in the attached screenshot.
Cheers.
The text was updated successfully, but these errors were encountered: