Insecure HTTP cookies 19 Jul Laraship Questions › Category: Technical › Insecure HTTP cookies 0 Vote Up Vote Down st3fan asked 3 years ago The secure tag is missing on the session and xsrf token on laraship. simple scan through https://pentest-tools.com/ 1 Answers 0 Vote Up Vote Down laraship Staff answered 3 years ago Hello, to enable secure cookies please add the below line to your .env file and clear config cache after SESSION_SECURE_COOKIE=true st3fan replied 3 years ago thanks! Please login or Register to submit your answer Username or Email Address Password Remember Me