cookie-properties
Specifies session cookie properties.
Note - If cookie settings are defined declaratively in the web.xml file, the cookie
properties defined here take precedence. If cookie settings are defined programmatically using javax.servlet.SessionCookieConfig
methods, those cookie settings take precedence over the cookie properties defined here.
Superelements
session-config (glassfish-web.xml)
Subelements
The following table describes subelements for the cookie-properties element.
Table C-44 cookie-properties Subelements
|
|
|
|
zero or more |
Specifies a
property, which has a name and a value. |
|
Properties
The following table describes properties for the cookie-properties element.
Table C-45 cookie-properties Properties
|
|
|
|
none |
Specifies the cookie name. |
|
Context
path at which the web module is installed. |
Specifies the pathname that is
set when the cookie is created. The browser sends the cookie if the
pathname for the request contains this pathname. If set to / (slash), the
browser sends cookies to all URLs served by GlassFish Server. You can set
the path to a narrower mapping to limit the request URLs to which
the browser sends cookies. |
|
none |
Specifies the expiration time (in seconds) after which the browser expires
the cookie. If this is unset, the cookie doesn't expire. |
|
(unset) |
Specifies the domain
for which the cookie is valid. |
|
none |
Specifies the comment that identifies the session
tracking cookie in the cookie file. |
|
dynamic |
Sets the Secure attribute of any JSESSIONID cookies
associated with the web application. Allowed values are as follows:
true — Sets Secure to true.
false — Sets Secure to false.
dynamic — The JSESSIONID cookie inherits the Secure setting of the request that initiated the session.
To set the Secure
attribute of a JSESSIONIDSSO cookie, use the ssoCookieSecure virtual-server property. For details,
see create-virtual-server(1). |
|
none |
Specifies that the cookie is marked HTTP only. Allowed values are true
or false. |
|