Fix A+ rating when checking with Nextcloud Security Scan. - nextcloud-server.git - Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

diff options

author	DaleBCooper <github@r13t.de>	2025-03-01 19:03:13 +0100
committer	backportbot[bot] <backportbot[bot]@users.noreply.github.com>	2025-03-02 11:33:13 +0000
commit	e1e0b68feb2c641c583816f52766ce73aa72cd89 (patch)
tree	36b742bcd1413fde6ff5bfc8f4f4c624cca6aec1 /dist/files_external-init.js.license
parent	bf387e571c3085007e1f697bf1180cda6d09b090 (diff)
download	nextcloud-server-backport/51173/master.tar.gz nextcloud-server-backport/51173/master.zip

Fix A+ rating when checking with Nextcloud Security Scan.backport/51173/master

Due to commit 33d7019 session.cookie_secure=true is not set when accessing /status.php. This results in a degration from A+ to A rating due to missing __Host prefix for nc_sameSiteCookielax and nc_sameSiteCookiestrict cookies.

Diffstat (limited to 'dist/files_external-init.js.license')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: