"finished" implies the entire setup process is complete.

Or better may be "...when you have created it."

Same as "webserver" - two words, or hyphenated

Possibly debatable, but otherwise should be hyphenated, e.g.
"web-server"

Shouldn't normally start a sentence with "possibly", at least not
in this way

"duplicated" implies it was deliberate

("in LDAP", or "in the LDAP directory", but not "in the LDAP")

"Whether to activate or not ..." isn't a good word order. Either
"whether or not to ..." or "whether to ... or not"

"Force to ask for" isn't good

Simplify statement about passwords

The DN belongs to the user

Should be either "in LDAP" or "inside/in the LDAP directory"

Resolve "remove all reference to stretch registry images"

Closes #6223

See merge request fusiondirectory/fd!969

Signed-off-by: Benoit Mortier <benoit.mortier@fusiondirectory.org>

Merge branch '6219-security-cookie-session-is-not-renewed-or-set-after-authentification' into '1.4-dev'

Resolve "[security] - Cookie session is not renewed or set after authentification"

Closes #6219

See merge request fusiondirectory/fd!958

Resolve "[Security] - Set Cookie settings to TRUE for option "HttpOnly""

Closes #6217

See merge request fusiondirectory/fd!959

Cookies options HttpOnly is now sets to TRUE, resolving a
possible XSS vulnerability.

In order to fix a potential vulnerability known as
session fixation, a new session cookie id is generated upon
succesfull login.

Cookies options HttpOnly is now sets to TRUE, resolving a
possible XSS vulnerability.