Skip to content

Secure Your Cookies

View on Twitter

💡 Working with cookies? Don't forget to secure them:

👉🏼 HttpOnly — no access from JavaScript (document.cookie API)
👉🏼 Secure — send cookie over HTTPS only
👉🏼 SameSite (Strict/Lax) — send only when current URL matches cookie URL

You might also like
Prune Docker Objects and Free up Space Read tip
Organise Large Nginx Configs Read tip
Secure Your VPS: Setup Firewall Read tip