Comments (4)
SergioBenitez
commented on May 27, 2024
1
Perhaps! You should look at the response being sent by the server to confirm.
from rocket.
SergioBenitez
commented on May 27, 2024
I can't replicate this. I've tested this directly, and the secure flag is decidedly not set:
user_id=0qyN42VOqf5fe+cizPVrfDmgbRVovNtYFqYCCS8%3D; HttpOnly; SameSite=Strict; Path=/; Expires=Wed, 13 Dec 2023 00:31:32 GMT
Setting secure to false prevents Rocket from overriding the value. What's more, Rocket doesn't touch the value unless TLS is enabled:
Rocket/core/lib/src/cookies.rs
Lines 577 to 579 in 0ada4b0
(whoops! accidentally hit the close button!)
from rocket.
BastiaanOlij
commented on May 27, 2024
Very strange, I wonder if this is something that is being overruled on the browser side. I'm using chrome and looking at the cookie there it is set to secure. Could this be cause the cookie was created as secure at some point and the browser hangs on to that?
I'm currently not behind the system of the client but as soon as I can do some more testing (and also test with the 0.5.0 release) hopefully I can give some better feedback.
from rocket.
SergioBenitez
commented on May 27, 2024
I'm going to close this out - it does not appear that this is a bug. Please let me know if you're able to confirm otherwise!
from rocket.
Related Issues (20)
- Path to `contrib` repositories is not correct in sub `Cargo.toml` files HOT 1
- Force enable color output HOT 2
- Getting several lints on a #[derive(FromForm)] HOT 1
- Receiving ">>> Request guard `…` is forwarding" messages with log_level=critical HOT 6
- debug!("Received request: {:#?}", hyp_req); HOT 4
- Rocket does not return a 413 when the data submitted in a form exceeds the limit HOT 7
- Build fails with rustc<=1.68.2 HOT 3
- Update `hyper` to `1.0` HOT 1
- Conflicts among routes when `FileServer::rank()` function is used HOT 11
- Getting several no_effect_underscore_binding lints on #[launch] HOT 1
- Hello world example compiler error: macro-expanded `macro_export` HOT 2
- Handling of null bytes in forms is problematic HOT 6
- Improvements for the web serach: Content-Type, text/plain HOT 2
- Phase out async_trait macro HOT 2
- Recognise source maps in `ContentType::from_extension` HOT 2
- route rank clarification HOT 1
- Link to GitHub discussion from the web site HOT 1
- Supply PanicInfo to Catchers where applicable HOT 2
- (Solved) Rocket database fairing panicking while connecting to dockerized postgres on MacOS Sonoma HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rocket.