use-http-only-cookies

use-http-only-cookies

use-http-only-cookies = {yes|no}

Description

Whether WebSEAL will add the HTTP-only attribute to the Session, LTPA and Failover Set-Cookie headers sent by WebSeal.
Options

yes Enables WebSEAL to add the HTTP-only attribute to Session, LTPA and Failover Set-Cookie headers.
no Prevents WebSEAL from adding the HTTP-only attribute to Session, LTPA and Failover Set-Cookie headers.

Usage: Required.
Default value yes
Example:
use-http-only-cookies = yes

Parent topic: [server] stanza

yes	Enables WebSEAL to add the HTTP-only attribute to Session, LTPA and Failover Set-Cookie headers.
no	Prevents WebSEAL from adding the HTTP-only attribute to Session, LTPA and Failover Set-Cookie headers.