}

    /**
     * Determines whether the user identification cookie should be marked as secure.
     * Checks the configured secure setting or examines request headers to detect HTTPS.
     *
     * @return true if the cookie should be secure, false otherwise
     */
    protected boolean isSecureCookie() {
        if (cookieSecure != null) {
            return cookieSecure;

                        cookie.setHttpOnly(Constants.TRUE.equalsIgnoreCase(fessConfig.getCookieSearchParameterHttpOnly()));
                        final String secure = fessConfig.getCookieSearchParameterSecure();
                        if (StringUtil.isBlank(secure)) {
                            final String forwardedProto = req.getHeader("X-Forwarded-Proto");
                            if ("https".equalsIgnoreCase(forwardedProto)) {

   *
   * @deprecated If you must interoperate with a system that requires MD5, then use this method,
   *     despite its deprecation. But if you can choose your hash function, avoid MD5, which is
   *     neither fast nor secure. As of January 2017, we suggest:
   *     <ul>
   *       <li>For security:
   *           {@link Hashing#sha256} or a higher-level API.
   *       <li>For speed: {@link Hashing#goodFastHash}, though see its docs for caveats.

import jakarta.servlet.ServletOutputStream;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;

/**
 * API manager for search engine administrative operations.
 * Provides secure access to search engine APIs through authentication and token-based authorization.
 */
public class SearchEngineApiManager extends BaseApiManager {
    private static final String ADMIN_SERVER = "/admin/server_";

     */
    public GsaConfigParser() {
        super();
    }

    /**
     * Parses a GSA configuration XML file from the given input source.
     * This method configures a secure SAX parser and processes the XML content
     * to extract configuration information for web and file crawling.
     *
     * @param is the input source containing the GSA configuration XML

- **Crypto & Security** (`org.codelibs.core.crypto`, `org.codelibs.core.security`) - Basic cryptographic utilities, message digest operations, and secure random generation
- **XML Processing** (`org.codelibs.core.xml`) - XML DOM utilities, SAX parser helpers, and schema validation support

	public final fun path ()Ljava/lang/String;
	public final fun persistent ()Z
	public final fun sameSite ()Ljava/lang/String;
	public final fun secure ()Z
	public fun toString ()Ljava/lang/String;
	public final fun value ()Ljava/lang/String;
}

public final class okhttp3/Cookie$Builder {
	public fun <init> ()V
	public final fun build ()Lokhttp3/Cookie;

	public final fun path ()Ljava/lang/String;
	public final fun persistent ()Z
	public final fun sameSite ()Ljava/lang/String;
	public final fun secure ()Z
	public fun toString ()Ljava/lang/String;
	public final fun value ()Ljava/lang/String;
}

public final class okhttp3/Cookie$Builder {
	public fun <init> ()V
	public final fun build ()Lokhttp3/Cookie;

- kubeadm: consider --bind-address or --advertise-address and --secure-port for control plane components when the feature gate WaitForAllControlPlaneComponents is enabled. Use /livez for kube-apiserver and kube-scheduler, but continue using /healthz for kube-controller-manager until it supports /livez. ([#128474](ht...

        Secured secured = method.getAnnotation(Secured.class);
        assertNotNull(secured);
        assertEquals("ROLE_CHILD_METHOD", secured.value()[0]);
    }

    // Test with empty roles array
    @Secured({})
    static class EmptyRolesClass {
    }

    public void test_emptyRolesArray() {
        Secured secured = EmptyRolesClass.class.getAnnotation(Secured.class);