A friendly place for programming greenhorns!
Big Moose Saloon
Register / Login
Need to set HTTPONLY value to make cookies secure!!!
Joined: Oct 15, 2008
Apr 21, 2010 23:24:13
I am currently setting HTTPOnly to make the cookies secure using following code.
response.setHeader("SET-COOKIE", "JSESSIONID=" + sessionid+ ";HttpOnly");
I have referred following URL for this.
But while doing so each time it is creating a new sessionID.
So, by means of that old session value got vanished.
Please do let me know what should be the possible solution of this problem.
Waiting for prompt reply.
I agree. Here's the link:
subject: Need to set HTTPONLY value to make cookies secure!!!
HTTPonly & Secure cookie in Websphere?
Non-secure Cookie Used
Multiple Cookies with the name 'JSESSIONID' getting created
All times are in JavaRanch time: GMT-6 in summer, GMT-7 in winter
| Powered by
Copyright © 1998-2014