BBjCookie::isHttpOnly

Description

In BBj 18.04 and higher, this method returns true if the cookie can only be sent over HTTP.

Syntax

Return Value

Method

boolean

isHttpOnly()

Parameters

None.

Return Value

Returns a boolean where 0 = BBjCookie is not only for secure connections and 1 = BBjCookie is only for secure connections.

Remarks

HttpOnly is an additional flag included in a Set-Cookie HTTP response header. Using the HttpOnly flag when generating a cookie helps mitigate the risk of client side script accessing the protected cookie (if the browser supports it).

Example

REM Obtain the instance of the BBjAPI object
LET myAPI! = BBjAPI()
MyServlet! = new MyServlet()
 
data!.setCallback(data!.ON_WEB_CONNECTION, myServlet!, "myMethod")
 
PROCESS_EVENTS
 
class public MyServlet
  method public void myMethod(BBjServletEvent p_event!)
    LET chan = UNT
    request! = p_event!.getHttpRequest()
    response! = p_event!.getHttpResponse()
    response!.setContentType("text/html")
    open (chan)"JSERVLET"
    print (chan)"<html><body><h1>Hello BBj!</h1>"
    vCookies! = request!.getCookies()
    sz = vCookies!.size()
    if sz then
      print (chan)"<ul>"
      for i = 0 to sz-1
        cookie! = vCoolies!.get(i)
        print (chan)"<li>"
        print (chan)"The BBjCookie '" + cookie!.getName() + "' "
        print (chan)"has the value '" + cookie!.getValue() + "' "
        print (chan)"for the domain " + cookie!.getDomain() + " "
        print (chan)"at path " + cookie!.getPath() + " "
        print (chan)"will expire in " + cookie!.getMaxAge() + " seconds "
        if cookie!.isSecure()
          print (chan)" for HTTPS protocol "
        endif
        print (chan)"is version " + cookie!.getVersion() + " "
        print (chan)"comment '" + cookie!.getComment() + "' "
      next i
      print (chan)"</ul>"
    endif
    print (chan)"</body></html>"
    close (chan)
  methodend
classend

See Also

BBjAPI

BBjServletEvent

BBjHttpRequest

BBjHttpResponse

BBjCookie