File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Security and the fly likes Need to set HTTPONLY value to make cookies secure!!! Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


JavaRanch » Java Forums » Engineering » Security
Bookmark "Need to set HTTPONLY value to make cookies secure!!!" Watch "Need to set HTTPONLY value to make cookies secure!!!" New topic
Author

Need to set HTTPONLY value to make cookies secure!!!

Kushagra Bindal
Ranch Hand

Joined: Oct 15, 2008
Posts: 156
Hi All,

I am currently setting HTTPOnly to make the cookies secure using following code.



I have referred following URL for this.

OWASP

But while doing so each time it is creating a new sessionID. So, by means of that old session value got vanished.

Please do let me know what should be the possible solution of this problem.

Waiting for prompt reply.

Thanks
Kushagra Bindal
 
GeeCON Prague 2014
 
subject: Need to set HTTPONLY value to make cookies secure!!!