-
Type:
Enhancement
-
Resolution: Fixed
-
Priority:
P2
-
Affects Version/s: 6
-
Component/s: core-libs
-
b37
-
generic
-
generic
-
Verified
The HttpOnly attribute for cookies is not part of RFC 2965 but is widely used because it provides a extra level of security.
When a cookie is flagged 'HttpOnly' it means that cookie should not be accessible through scripting but only sent as part of a HTTP request.
When a cookie is flagged 'HttpOnly' it means that cookie should not be accessible through scripting but only sent as part of a HTTP request.
- relates to
-
JDK-6865629 Backport JDK 7 Cookie fixes to JDK 6
-
- Closed
-
-
-
- Closed
-