Forum Discussion

Nimbostratus

Mar 11, 2020

Http only flag set on applications cookies

Hi All If i set the http only attribute for the cookies learnt in the ASM policy, then when I access the web application, and inspect the same via browser, it should show that the cookie has ht...

Altostratus

Mar 12, 2020

That is correct! You are basically forcing browser to access cookies via http and https by enabling httponly attribute in ASM.

Recent Discussions

Background Tasks
Nov 22, 2024
eagertolearn
APM with EntraID as idP / request signed
Nov 22, 2024
andradejp
Should config via cli rather than gui?
Nov 22, 2024
Herman2024
APM Modern Customization - modify Header in user-common.js and form in user-logon.js
Nov 22, 2024
emalzer
Which process is consuming higher CPU
Nov 22, 2024
eagertolearn

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Http only flag set on applications cookies

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

OnBase Application and Cookie Issues

cookie set in HTTP::respond 302 ,but I need to set expires as 7 days for this cookie

Encrypted cookies on strict uri

set HTTPOnly in cookie

https end to end

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS