Skip to navigation

How can I configure JBoss to use ssl-only (secure) session cookies ?

Updated 2013-10-08T12:01:42+00:00

Issue

  • JBoss needs to be configured to use ssl-only/secure session cookies
  • why it is necessary (secure="true") in <SessionCookie secure="true" httpOnly="true" /> ?

Environment

  • JBoss Enterprise Application Platform (EAP)
    • 5.x

Subscriber content preview. For full access to the Red Hat Knowledgebase, please log in.

Not a subscriber? Learn more about the benefits of Red Hat Subscriptions.