Page MenuHomePhabricator

centralauth_Session cookie should not be persistent
Closed, ResolvedPublic

Description

The centralauth_Session cookie is assigned an explicit expiration time 24 hours in the future. Thus, it does not get cleared as expected when the user closes their browser.


Version: unspecified
Severity: normal

Details

Reference
bz14564

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 21 2014, 10:11 PM
bzimport set Reference to bz14564.
bzimport added a subscriber: Unknown Object (MLST).