2 Replies Latest reply on Dec 3, 2011 6:16 AM by pavelz

    How to setup session cookie to be httpOnly and secure in JBOSS 7?

    pavelz Newbie

      I used the following steps with JBOSS5 and 6, but these are not applicable to JBOSS 7:

        - change server/CONFIG/deploy/jbossweb.sar/context.xml

        - add <SessionCookie httpOnly="true" secure="true">

       

      Thanks

      -pavel-