Forum Discussion

Nimbostratus

Sep 29, 2011

HTTP::cookie httponly enable doesn't seem to do anything

On LTM v10.2 setting "HTTP::cookie httponly enable" has no effect. On the wiki, it says this is for v11 only, but it seems to be recognized. Also, there's no more information about this comm...

Cirrostratus

Sep 30, 2011

Hi Jose,

The httponly option was added in v11 and shouldn't work in past versions. You'd need to modify the Set-Cookie header to append it in pre-v11.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

HTTP::cookie httponly enable doesn't seem to do anything

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

T4 and ALL tenant images

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Related Content

How to add Httponly and Secure attributes to HTTP cookies (for 11.5.x)

Lightboard Lessons: HTTP Cookie SameSite Attribute

Upcoming F5 Ask Me Anything (AMA)

iRule to take cookie from HTTP Response into HTTP Request via table

HTTP To HTTPS Cookie Persistence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS