Set frontend auth cookie to be sent over secure channel only

This commit is contained in:
Sebastiaan Janssen
2017-06-23 08:22:44 +02:00
committed by GitHub
parent f2d9cc0c0b
commit 805709a91b
+1 -1
View File
@@ -308,7 +308,7 @@
</buildProviders>
</compilation>
<authentication mode="Forms">
<forms name="yourAuthCookie" loginUrl="login.aspx" protection="All" path="/" slidingExpiration="true" timeout="525600" />
<forms requireSSL="true" name="yourAuthCookie" loginUrl="login.aspx" protection="All" path="/" slidingExpiration="true" timeout="525600" />
</authentication>
<authorization>
<allow users="?" />