Insecure HTTP cookies 19 Jul Laraship Questions › Category: Technical › Insecure HTTP cookies 0 Vote Up Vote Down st3fan asked 4 years ago The secure tag is missing on the session and xsrf token on laraship. simple scan through https://pentest-tools.com/ 1 Answers 0 Vote Up Vote Down laraship Staff answered 4 years ago Hello, to enable secure cookies pleaseĀ add the below line to your .env file and clear config cache after SESSION_SECURE_COOKIE=true st3fan replied 4 years ago thanks! Please login or Register to submit your answer Username or Email Address Password Remember Me