@sgiehl opened this Pull Request on February 25th 2021 Member

Description:

Seems the matomo_lang cookie is only used in PHP scripts and not in any javascripts. So should be fine to add the httpOnly flag I guess.

fixes #17270

Review

  • [ ] Functional review done
  • [ ] Usability review done (is anything maybe unclear or think about anything that would cause people to reach out to support)
  • [ ] Security review done see checklist
  • [ ] Code review done
  • [ ] Tests were added if useful/possible
  • [ ] Reviewed for breaking changes
  • [ ] Developer changelog updated if needed
  • [ ] Documentation added if needed
  • [ ] Existing documentation updated if needed
This Pull Request was closed on February 25th 2021
Powered by GitHub Issue Mirror