Reg Cookie Persistence Options

Question

Hi,&nbsp;
Just want to know when would we use the following options in the Cookie Persistence Profile&nbsp;

HTTP Only Attribute :-  Enabled / Disabled&nbsp;

Always Send Cookie&nbsp;

Thanks,&nbsp;
Yugandhar&nbsp;
.&nbsp;

yoann_le_corvi1 · Answer

Hi&nbsp;
HTTP Only : cookie is accessible to browser only, and not to evental scripts run withing the browser. Basically, if you app is a standard web app, without too much client side javascript processing, checking this should be OK&nbsp;
Always sent : I didn't try in on my lab, but this is to send the session cookie in every response or only in the first. According to that article, if the cookie as an expiration date (IE session cookie is not checked"), it is anyway sent in every response with the expiration date updated regardless of the Always Sent Setting.
https://devcentral.f5.com/questions/cookie-persistence-quotalways-send-cookie-quot-option&nbsp;
Hope this helps :)&nbsp;

Forum Discussion

Reg Cookie Persistence Options

1 Reply

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

F5 BigIP APM VPN some LDAP field are base64 encoded

Two Arm Deployment mode using PBR

Questions about F5 BIG-IP Multi-Datacenter Configuration

Load balancing NTP Servers

APM URL Branching tolower

Related Content

Decoding the IPv4 address from the persistence cookie

F5 BIG-IP Advanced WAF – DOS profile configuration options.

Persistence Cookie Logging

Persistence Cookie Logger

Kubernetes architecture options with F5 Distributed Cloud Services

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS