How exactly do you configure httpOnly Cookies in ASP Classic?

后端未结

关注

 6  2205

失恋的感觉 2020-12-15 08:52

I\'m looking to implement httpOnly in my legacy ASP classic sites. Anyone knows how to do it?

6条回答

挽巷 (楼主)

2020-12-15 09:16

If you are using IIS7 or IIS7.5 and install the URL Rewriting add-in then you can do this. You can create a rewriting rule that adds "HttpOnly" to any out going "Set-Cookie" headers. Paste the following into the section of your web.config. I then used Fiddler to prove the output.

Regards, Jeremy

0 讨论(0)

查看其它6个回答