httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark Brodis <mabro...@colorado4x4.net>
Subject Re: [users@httpd] cookie secure flag
Date Mon, 23 May 2011 19:59:27 GMT
What I have done is do a edit-header to append the "Secure" onto the
Set-Cookie command coming back from the app-container through the web
server.  The header edit command is only available on 2.2 (likely 3.X also),
but not on 2.0.

Example:

Header edit Set-Cookie ^(.*)$ $1;Secure;

-Mark


On Mon, May 23, 2011 at 1:40 PM, Gil Pratte <gilbert.pratte@gmail.com>wrote:

> Hello all,
>
> I'm using apache http as a reverse proxy to tomcat. http takes care of the
> ssl encryption.
>
> Can anyone enlighten me on how to set the cookie secure flag to true.
>
> thanks in advance,
>
> gilbert
>

Mime
View raw message