httponly and secure on fortiweb 5.6

Forum|Forum|7 years ago
September 23, 2018
1 reply
5102 views

my question is about setting http only and secure on fortiweb 5.6. i set http only and secure on fortiweb 5.6 gui. but it doesnt work on all sessions when i check it as a client.

i have 2 sessions in my website, one of them has httponly and secure true in path pgwchannel and its name is jsession and the other one has httponly true but secure is false on root path and its name is cookiesession1.

what is the problem?

Emmanuel_GIRIN

New Member

Hi

Got exactly the same issue. In brief, how to set cookiesession1 both httpOnly and Secure?

ziziAuthor

New Member

hi

thanks for your answer, i didnt configure cookies seprately. i set up httponly and secure on my domain IP address. like this guide:

http://help.fortinet.com/fweb/580/Content/FortiWeb/fortiweb-admin/cookie_security.htm

i just active httponly and secure flags on Web Protection > Cookie Security > New Cookie Security.

thank you.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded