|
Hi,
I have an ASP.NET 4.0 application where I am trying to make ASP.NET sessionId cookie as HTTPOnly. My web server has IIS7.
I got the below solution from internet which did not work for me:
<httpCookies httpOnlyCookies="true" requireSSL="true"/>
I viewed cookies using Firebug where I observed that none of the cookies are HTTPOnly but they are secure.
Any solution to make ASP.NET_SessionId cookie as HTTPOnly.
|
|
|
|
|