aspose file tools*
The moose likes Struts and the fly likes how to use httponly cookie in struts applications Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java 8 in Action this week in the Java 8 forum!
JavaRanch » Java Forums » Frameworks » Struts
Bookmark "how to use httponly cookie in struts applications" Watch "how to use httponly cookie in struts applications" New topic

how to use httponly cookie in struts applications


Joined: Oct 24, 2007
Posts: 2

has anybody used httponly cookie in their applications.if so i would like you to throw some light on how to use httponly cookie in a struts application.

thanks in advance

Ulf Dittmer

Joined: Mar 22, 2005
Posts: 39575
Welcome to JavaRanch.

On your way in you may have missed that we have a policy on screen names here at JavaRanch. Basically, it must consist of a first name, a space, and a last name, and not be obviously fictitious. Since yours does not conform with it, please take a moment to change it, which you can do right here.

As to your question, I'm not sure what you mean by an "HTTP-only cookie". Cookies are used only with HTTP, not with other protocols. I'm going to move the question to the Struts forum.
[ October 26, 2007: Message edited by: Ulf Dittmer ]

Ping & DNS - updated with new look and Ping home screen widget
Anirvan Majumdar
Ranch Hand

Joined: Feb 22, 2005
Posts: 261
Try putting in a context.xml file in the META-INF folder.
In that using a <context> tag. This has an attribute called "cookies". Set "true" or "false" to get the desired behaviour out of your web-app
Scott Selikoff
Saloon Keeper

Joined: Oct 23, 2005
Posts: 3697


Your name still does not conform to the JavaRanch Naming Policy. Please review the policy and update it appropriately. This is your second warning.

Scott Selikoff

My Blog: Down Home Country Coding with Scott Selikoff
I agree. Here's the link:
subject: how to use httponly cookie in struts applications
Similar Threads
httponly cookie
How to make _WL_AUTHCOOKIE_JSESSIONID cookie HttpOnly?
Setting HttpOnly and Secure attributes in Struts2
Multiple Cookies with the name 'JSESSIONID' getting created
Need sample of weblogic.xml file for supporting HttpOnly