Details
-
Bug
-
Resolution: Fixed
-
Major
-
None
-
None
-
None
Description
Cookies are associated with the domain name, and all our webapps are run from the http://localhost domain. They use different ports but cookies, per design, work across different ports (with the only exception of port 443 for SSL-only cookies).
The result is that one webapp can see cookies set by another webapp for the locahost domain.
Attachments
# | Subject | Branch | Project | Status | CR | V |
---|---|---|---|---|---|---|
23353,1 | Handle hostname of remote | master | src/libhomescreen | Status: MERGED | +2 | 0 |
23354,1 | Handle hostname of remote | master | src/libwindowmanager | Status: MERGED | +2 | 0 |
23356,5 | af-main: OAuth client credentials and localuser names | master | AGL/meta-agl | Status: MERGED | +2 | +1 |
23357,4 | WORK IN PROGRESS [WAM: OAuth client credentials and localuser names] | master | AGL/meta-agl-devel | Status: ABANDONED | 0 | +1 |
23410,2 | af-binder: Fix issue when no port defined | master | AGL/meta-agl | Status: MERGED | +2 | +1 |
23411,2 | libwindowmanager & libhomescreen: Handle hostname of remote | master | AGL/meta-agl | Status: MERGED | +2 | +1 |