commit | 0722aed9067193a2656ffc68af7818ee39312e34 | [log] [tgz] |
---|---|---|
author | Felix Meschberger <fmeschbe@apache.org> | Mon Sep 13 14:07:31 2010 +0000 |
committer | Felix Meschberger <fmeschbe@apache.org> | Mon Sep 13 14:07:31 2010 +0000 |
tree | 0d204e0113d51fc4fa15553e26863c1934a8e1a7 | |
parent | 3f0dffd9511471db66213ed9eabd288453f7c3b2 [diff] |
SLING-1762 Add the HttpOnly attribute to setting the authentication cookie to make sure the cookie is not available to client side JavaScript. Also, when extracting the authentication data from the cookie ignore empty values. git-svn-id: https://svn.apache.org/repos/asf/sling/trunk@996543 13f79535-47bb-0310-9956-ffa450edef68