-
Improvement
-
Resolution: Unresolved
-
Minor
-
None
-
3.3, 4.5
-
MOODLE_33_STABLE, MOODLE_405_STABLE
After MDL-55273 cookiesecure now defaults to on. So secure cookies are used by default when using SSL. We should remove the setting unless there is a good use for turning it off when SSL is on.
Then the behaviour could be simple: Always use secure cookies when serving over SSL, and then never use secure cookies when not serving over SSL.
