R
Robert Slaney
note - using ASP.NET 2.0
I would like to set the httponly cookie flag on the asp.net sessionid
cookie. I know I can set this via the httpCookies element in web.config, but
I don't want to set all cookies to have this flag.
I have some cached static pages that use values from the cookies in
javascript so until I can reengineer these pages to remove this I cannot set
the web.config in this way.
Does the default asp.net session provider have the ability to set it's
cookie to HttpOnly ?
Cheers...
Rob
I would like to set the httponly cookie flag on the asp.net sessionid
cookie. I know I can set this via the httpCookies element in web.config, but
I don't want to set all cookies to have this flag.
I have some cached static pages that use values from the cookies in
javascript so until I can reengineer these pages to remove this I cannot set
the web.config in this way.
Does the default asp.net session provider have the ability to set it's
cookie to HttpOnly ?
Cheers...
Rob