http:cookie

차이

문서의 선택한 두 판 사이의 차이를 보여줍니다.

차이 보기로 링크

--- http:cookie [2012/12/15 15:56]
kwon37xi 새로 만듦
+++ http:cookie [2012/12/15 16:15] (현재)
kwon37xi [Cookie]
@@ 줄 1: / 줄 1: @@
 ====== Cookie ======
+  * [[http://en.wikipedia.org/wiki/HTTP_cookie|HTTP Cookie]]
   * [[https://www.owasp.org/index.php/HttpOnly|HTTPOnly]]
-===== Servlet 3.0 and HTTPOnly =====
+===== Servlet and HTTPOnly =====
-  * ''web.xml'' <code xml>
+==== Servlet 3.0 ====
+  * ''web.xml'' 설정으로 세션 쿠키를 HTTPOnly로 설정 <code xml>
 <session-config>
  <cookie-config>
@@ 줄 9: / 줄 11: @@
  </cookie-config>
 <session-config>
+</code>
+  * [[http://docs.oracle.com/javaee/6/api/javax/servlet/http/Cookie.html#setHttpOnly(boolean)|Cookie#setHttpOnly]]
+==== Servlet 2.x ====
+<code java>
+response.setHeader( "Set-Cookie", "name=value; HttpOnly");
+</code>
+==== Tomcat 구버전 ====
+  * [[http://stackoverflow.com/questions/33412/how-do-you-configure-httponly-cookies-in-tomcat-java-webapps|security - How do you configure HttpOnly cookies in tomcat / java webapps?]]
+  * httpOnly is supported as of Tomcat 6.0.19 and Tomcat 5.5.28.<code xml>
+<Context useHttpOnly="true">
+...
+</Context>
 </code>

http/cookie.1355554595.txt.gz · 마지막으로 수정됨: 2012/12/15 15:56 저자 kwon37xi