I wanted to set the secure attribute to my bearer token cookies, then I remembered that I enforce https on my website. So I didn't think it has any purpose for my use case, but I noticed other sites enforce https only also use the secure attribute for cookies anyway, so what is the use? did I miss something?
↧