Files
cozisnews/TODO
T
2025-08-17 19:22:19 +02:00

5 lines
154 B
Plaintext

input validation to avoid XSS and injection
only allow signup, login ecc over HTTPS
session expiration
mark cookies as secure
consider SameSite=Strict