Teammates: cookie is added to response without the 'secure' flag being set.

Created on 13 Apr 2020 · 7Comments · Source: TEAMMATES/teammates

cookies are added to response without the 'secure' flag being set.

https://github.com/TEAMMATES/teammates/blob/e01257fdd6870d5b9c569c26e55e33f6ad6a1875/src/main/java/teammates/ui/webapi/action/JsonResult.java#L52-L64

a-Security c.Task t-Java

Source

amarlearning

All 7 comments

i'll do it

tkech17 on 14 Apr 2020

As i can write only one task assigned as FirstTimers, please assign it two me

tkech17 on 14 Apr 2020

As i can write only one task assigned as FirstTimers, please assign it two me

You can proceed to submit a PR to address this issue. If anyone else would like to work on it they will check in with you first (if you have yet to submit a PR) so don't worry.

Also, take note of https://github.com/TEAMMATES/teammates/issues/10021#issuecomment-613499993. All the best! Let us know if you need any help :)

madanalogy on 15 Apr 2020

👍1

It appears that adding the secure flag impacts the e2e testing being performed as seen in #10024, therefore upgrading this to a contributor level difficulty

madanalogy on 22 Apr 2020

I would like to take this one if no one is taking

amarlearning on 1 May 2020

👍1

can anyone explain how it is effecting e2e testing or can provide more details on that? I am firstTimer here.

ghost on 14 May 2020

can anyone explain how it is effecting e2e testing or can provide more details on that? I am firstTimer here.

@amarlearning has already indicated that he will be working on this issue. Managing the e2e testing is more complicated than advisable for first timers. Maybe you can consider working on a first timer issue instead? We have a first timer epic you could take a shot at contributing to in #10042

madanalogy on 14 May 2020

👍1

Was this page helpful?

0 / 5 - 0 ratings