The cookie which is used for the Google Apps Login plugin should only be set on the login page, however it's also being set on REST API responses, and possibly in some other cases. We added a filter to configure the plugin to only add the cookie on the login page. However the filter is not always added, causing the plugin to still add the cookie in some cases.

Tasks:

• Remove conditions and always add the filter.