moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-08-13 17:03:50 -04:00
Code Issues Releases Wiki Activity

TODO: Leave secure cookies alone

Browse Source
This commit is contained in:
Daniel Stenberg 2016-10-06 09:40:47 +02:00
parent c271b1c29a
commit da1a2d1ac8
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/TODO
View File

@ -69,6 +69,7 @@
5.7 Brotli compression 5.7 Brotli compression
5.8 QUIC 5.8 QUIC
5.9 Add easy argument to formpost functions 5.9 Add easy argument to formpost functions
5.10 Leave secure cookies alone
6. TELNET 6. TELNET
6.1 ditch stdin 6.1 ditch stdin
@ -554,6 +555,14 @@ This is not detailed in any FTP specification.
deprecating the old ones. Allows better error messages and is generally good deprecating the old ones. Allows better error messages and is generally good
API hygiene. API hygiene.
5.10 Leave secure cookies alone
Non-secure origins (HTTP sites) should not be allowed to set or modify
cookies with the 'secure' property:
https://tools.ietf.org/html/draft-ietf-httpbis-cookie-alone-01
6. TELNET 6. TELNET
6.1 ditch stdin 6.1 ditch stdin