You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi,
I notice that even after RPI reboot if browser it is not closed and cookie destroyed the authentication cookie can be re/used forever... this open the problem with cookie stealing.
Is it possible to set on controller to request authentication for every action ?
Normally the credentials are saved in browser by user so there is no need to reenter every time just to confirm them.
This behavior will protect also for unwanted action if tap by mistake on phone when scrolling the page looking in a long list.... I have 16 relays ( and I plan to add 8 more ) all used for: heating, lights, doors, power plug control... and old eyes.
The text was updated successfully, but these errors were encountered:
Hi,
I notice that even after RPI reboot if browser it is not closed and cookie destroyed the authentication cookie can be re/used forever... this open the problem with cookie stealing.
Is it possible to set on controller to request authentication for every action ?
Normally the credentials are saved in browser by user so there is no need to reenter every time just to confirm them.
This behavior will protect also for unwanted action if tap by mistake on phone when scrolling the page looking in a long list.... I have 16 relays ( and I plan to add 8 more ) all used for: heating, lights, doors, power plug control... and old eyes.
The text was updated successfully, but these errors were encountered: