Vulnerability according to audit for 'at_check' cookie | Community
Skip to main content
D
digitaldarpan1
Level 2
February 3, 2021
Solved

Vulnerability according to audit for 'at_check' cookie

  • February 3, 2021
  • 1 reply
  • 2722 views

Hi Guys, Can i change the attribute of the cookie by Launch/At itself.


Vulnerability Category:
150121 Session Cookie (Authentication Related) Does Not Contain The "HTTPOnly" Attribute

150120 Session Cookie (Authentication Related) Does Not Contain The "secure" Attribute

 

According to the above comment received from audit, We want to add "HTTPOnly" and "secure" attribute to cookie.
Any suggestions are welcome. Thanks in advanced!
@shelly-goel @amelia_waliany 

    This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
    Best answer by zach_shearer

    Is Adobe Target installed via Adobe Launch? If so, there are instructions at the documentation below. 

     

    https://experienceleague.adobe.com/docs/analytics/implementation/vars/config-vars/writesecurecookies.html?lang=en#s.writesecurecookies-in-appmeasurement-and-launch-custom-code-editor

     

     

    1 reply

    zach_shearer
    zach_shearerAccepted solution
    Level 4
    February 3, 2021

    Is Adobe Target installed via Adobe Launch? If so, there are instructions at the documentation below. 

     

    https://experienceleague.adobe.com/docs/analytics/implementation/vars/config-vars/writesecurecookies.html?lang=en#s.writesecurecookies-in-appmeasurement-and-launch-custom-code-editor

     

     

      D
      digitaldarpan1Author
      Level 2
      June 8, 2021
      I have tried using above link. Still I can't see "secure" and "HTTPOnly" attributes on "at_check" cookie."
      Terms & ConditionsAccessibility statement

      Loading footer...