setting Secure and HttpOnly flag in Cookie

Avatar

Avatar

satheeshraj

Avatar

satheeshraj

satheeshraj

02-11-2015

Hi,

I have the below requirement could someone provide inputs as what could be done

  • I need to set the secure flag for login-token cookie. Currently "TokenUtil.createCredential()" method is having the argument to set the cookie as HttpOnly.
  • I need the sessionPersistence cookie to be HttpOnly and secure.

Please suggest a way to achieve this in CQ5 version 5.6.1

Thanks,

Satheeshraj V

View Entire Topic

Avatar

Avatar

jamiec4451712

Avatar

jamiec4451712

jamiec4451712

08-06-2020

I know this is an old question, but our team ran into a very similar issue and I posted details of our solution here: https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/aem-session-cookie-with-ht...