This week's book giveaway is in the OO, Patterns, UML and Refactoring forum. We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line! See this thread for details.
The 1st request is handled by a servlet where 4 cookies are set and then request is forwarded to a JSP.
The JSP's response header when studied using Development tool's Network tab can be seen to have all the cookies in the response header.
The JSP form's action is a servlet. This is where my question is.
The request received in the 2nd servlet when queried appears to NOT contain any Secure Cookies and the HTTPOnly cookies also do not
show up as HTTPOnly(ck.isHttpOnly()). WHY is this so?
I’ve looked at a lot of different solutions, and in my humble opinion Aspose is the way to go. Here’s the link: http://aspose.com
subject: HttpOnly, setSecure Cookie not coming from Browser to Servlet.