BBjJettyContextConfiguration::isSessionCookieHttpOnly
Description
In BBj 18.04 and higher, this method checks the status of the session-cookie-httpOnly attribute for the current BBjJettyContext.
Syntax
|
Return Value |
Method |
|---|---|
|
boolean |
isSessionCookieHttpOnly() |
Parameters
None.
Return Value
Returns a boolean value indicating the state of the flag.
Remarks
The session-cookie-httpOnly attribute helps mitigate the risk of client side script accessing the protected cookie (if the browser supports it) and if a cross-site scripting (XSS) flaw exists, prevents a user accidentally accesses a link that exploits this flaw.
Example
None.