2 points
Community rank #11550
mweichert
NewbieJust Getting Started
MemberLikes (0)
Hello!
First off, thanks for developing the domain mapping plugin - it's very useful. However, before I put it into production use I'd like to learn more about this "cross-domain cookie" thing, as it sounds like a possible security issue.
What do you mean exactly by "cross-domain cookie" syncing? Why are you modifying the cookies? Aren't the cookies double hashed?
11696 pointsCommunity rank #2Supreme DeityTrue DEVianLifetime member
Member
(joined April 2009)
Likes (0)
Hiya M,
First off, welcome to WPMU DEV! :D
I'm not aware of any security concerns associated with the domain mapping plugin, but I'll ask a developer to comment on the cross-domain cookie process specifically.
What do you mean exactly by "cross-domain cookie" syncing? Why are you modifying the cookies? Aren't the cookies double hashed?
The plugin doesn't modify the cookies. It just saves the hashes in the database so that they can be retrieved on the sites were the user will be automatically logged in.
Responses (2)
Member (joined April 2009) Likes (0)
Hiya M,
First off, welcome to WPMU DEV! :D
I'm not aware of any security concerns associated with the domain mapping plugin, but I'll ask a developer to comment on the cross-domain cookie process specifically.
Thanks!
Developer (joined August 2010) Likes (0)
The plugin doesn't modify the cookies. It just saves the hashes in the database so that they can be retrieved on the sites were the user will be automatically logged in.
Become a member