Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revisionBoth sides next revision
security [2020_05_27 16:44] stevensecurity [2020_05_27 17:03] – [13 Website Security] steven
Line 121: Line 121:
 We follow best practices in developing secure software, as mandated by GDPR, protecting for example against injection attacks, cross-site request forgery and session hijacking. We perform a third-party vulnerability code scan for each release. We follow best practices in developing secure software, as mandated by GDPR, protecting for example against injection attacks, cross-site request forgery and session hijacking. We perform a third-party vulnerability code scan for each release.
  
-The following cookies are used. <site> is the subdomain of your instance.+These are the formats of the cookies are used. <site> is the unqualified hostname of the web address. The unqualified hostname of %%https://files.example.com%% is files.
  
- PHPSESSID Unique ID of session. Retention: Session +^ Cookie ^ Type ^ What for ^ Retention ^ 
- +PHPSESSID | Functional | Unique ID of session Session | 
- * site__just_logged_in - Start page logic. Retention: 1 year +| %%<site>__just_logged_in%% | Functional | Start page logic (0 or 1) | 1 year | 
- +autologin | Functional | Token for remember me feature 14 days | 
- autologin - token for remember me feature. Retention: 14 days +| %%<site>__<various>%% | Functional | Remembers settings between sessions such as what folders and panels are collapsed, and the last sort order. e.g. %%files__mainTree_openedFoldersKeys%% | 1 year |
- +
- * site__various - Remembers settings between sessions such as what folders and panels are collapsed, and the last sort order.  Retention: 1 year+
  
 ===== 14 Cyber Essentials ===== ===== 14 Cyber Essentials =====
© Copyright 2024 Nasuni.