Description
build 7.2.0.CR5
Store login and password in Local storage is not safe. Please, move this information to sessionStorage object.
read more about local storage:
https://www.owasp.org/index.php/HTML5_Security_Cheat_Sheet#Local_Storage
https://www.owasp.org/index.php/Test_Local_Storage_(OTG-CLIENT-012)
Attachments
Issue Links
- is related to
-
ENTMQBR-1016 [AMQ7,Hawtio]AMQ 7 hawtio console store users password in browser’s local cache after user get logout
- Closed