•  
      request #12875 Clear all site data on users logout
    Infos
    #12875
    Thomas Gerbet (tgerbet)
    2019-01-30 17:56
    2019-01-29 15:02
    13379
    Details
    Clear all site data on users logout
    Some browsers (at least Chrome and Firefox) supports a header called Clear-Site-Data [0]. When sent, this header tells to the browser to delete information like caches, cookies, local storage...
    This is interesting for at least two reasons:
    * it makes sure that everything that could possibly be done to preserve user's privacy is done
    * it can helps mitigate security issues where malicious users has successfully injected code by making it harder to persist the attack





    [0] https://w3c.github.io/webappsec-clear-site-data/
    Other
    Empty
    Empty
    • [ ] enhancement
    • [x] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2019-01-30
    Attachments
    Empty
    References

    Follow-ups