[HTTPCLIENT-1872] Add HttpOnly boolean to Cookie, ClientCookie etc. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Won't Fix
Affects Version/s: 4.5.3
Fix Version/s: 5.0 Alpha3
Component/s: HttpClient (classic)
Labels:
None

Description

The Cookie interface does not support the HttpOnly attribute as specified in RFC-6265 section 4.1.2.6 ("The HttpOnly Attribute"). Presently in a project where the HttpClient is being used to implement a reverse proxy, we are losing the HttpOnly attribute set from the back-end server. I'd be happy to create a patch for 4.5.4 if it helps

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Richard Sand

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 26/Sep/17 19:14

Updated:: 08/Oct/17 11:03

Resolved:: 08/Oct/17 11:03