Forcing HttpOnly cookies with JRun/ColdFusion -
We need to ensure that all cookies on the CF7 site have been set as HTTP.
We are using jsessionid to control our sessions, and JRU does not make it as HTTP only.
Although it is possible to modify the existing cookie to add this setting, we have to set it up to the beginning from http.
Any suggestions?
Related Questions:
From:
CF 8 or less is running and using application.cfc
Comments
Post a Comment