cookies sign设置httponly和secure属性
https://www.baidu.com/link?url=MijzdQBQk3T2P0XXeWku2EZ3X4xx39CeumQRyLidKhxuUDAsacynPQWeI-Ls2X6GELI-HMUdZVkquieqLXwKGq&wd=&eqid=e25930700000a3170000000661b6edc5
参考安全防护-https://help.fanruan.com/finereport10.0/doc-view-2454.html