Setting cookies http-only and secure
Hi...Are the below DSS settings correct and will achieve desired result or I have to make changes in web.xml and redeploy ear?
prconfig/cookie/HttpOnly/default = true
prconfig/HTTP/SetSecureCookie/default = true
**Moderation Team has archived post**
This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.
After removing secure cookie setting, things started working fine. it seems this setting is applicable for servlet specification 3.0 while in pega 7.1.5 we are using servlet 2.5 specifications.
Keep up to date on this post and subscribe to comments