Web applications and HttpOnly cookies - why should you care?

There are numerous not obvious nuances that can affect the way our web application works in terms of software security. Negligence in implementing some defensive mechanisms can have a disastrous effect on our project, especially when combined with other problems. All in our security is as strong as its weakest link. In the article, I will present one of those links which software developers are sometimes unaware of - cookies accessible via JavaScript and I’ll show how to deal with an attack using Django or Flask and HttpOnly cookies.

see what we can create for you

more creative stories

We use cookies on this site to improve performance. By browsing this site you are agreeing to this. For more information see our Privacy policy I understand