Preparations
Plan (part 1)
- perform a clean install
- confirm, that:
- In-Portal is working
- decrypted cookies are shown in the Debugger
- attempt to inspect cookies using JavaScript or browser add-ons similar to EditThisCookie shows, that they're encrypted
- perform an upgrade
- confirm, that:
- In-Portal is working
- decrypted cookies are shown in the Debugger
- attempt to inspect cookies using JavaScript or browser add-ons similar to EditThisCookie shows, that they're encrypted
Plan (part 2)
- login to the Admin Console
- go to Configuration → Website → Advanced section
- confirm, that Encrypted Cookies contains the value of the Session Cookie Name system setting:
- with/without adm_ prefix
- with/without _live suffix
- change the value of the Session Cookie Name system setting and save changes
- confirm, that Encrypted Cookies contains the value of the Session Cookie Name system setting:
- with/without adm_ prefix
- with/without _live suffix
- confirm, that there are Plain Text Cookies and Encrypted Cookies system settings
- confirm, that attempt to write the same cookie name in both Plain Text Cookies and Encrypted Cookies system settings would result in a validation error
- confirm, that attempt to remove any of 4 cookie names containing Session Cookie Name system setting value in them would result in them being auto-added back into the Encrypted Cookies system setting upon the Save button press
- open Debugger
- confirm, that Debugger is only showing cookies listed in either of Plain Text Cookies or Encrypted Cookies system setting
Plan (part 3)
- go to the Front-End
- perform a login
- add any products to the shopping cart
- perform logout
- confirm, that shopping cart is empty
- perform a login
- confirm, that shopping cart contains previously added product