Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Non-secure Cookie Used

 
Prasanth S Pillai
Ranch Hand
Posts: 39
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Please advise how to set a secure flag for cookies? I see lots of options in google. I have a j2ee application with apache web server & weblogic.

Where I need to do a change in order to see

Set-Cookie: var=value; httpOnly; secure

I assume it would be a webserver setting but dont know where.
 
Bear Bibeault
Author and ninkuma
Marshal
Pie
Posts: 64185
83
IntelliJ IDE Java jQuery Mac Mac OS X
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Have you looked at the JavaDoc for the Cookie class?
 
Prasanth S Pillai
Ranch Hand
Posts: 39
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The website - http://docs.oracle.com/cd/E15051_01/wls/docs103/webapp/weblogic_xml.html
says to use the <cookie-secure > tag in weblogic.xml to make cookie secure.
I tried it, but does not seem to be working.

has anyone tried this option? or any other working solution?
 
I agree. Here's the link: http://aspose.com/file-tools
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic