Welcome! Log In Create A New Profile

Re: How to check the existence of a http-only secure cookie

Forum List Message List New Topic Print View

kalpesh.patel@glgroup.com

March 12, 2013 01:38PM

Registered: 11 years ago
Posts: 13

Just curious as to what the broader context is behind your question...

Wouldn't below suffice since implicit testing of http-only and secure attributes are tested?

http {
server {
listen 443;
ssl on;
ssl_certificate ...;
ssl_certificate_key ...;

location / {
if ($cookie_COOKIE != '') {
echo "cookie found here is http-only and secure."
}
if ($cookie_YOURCOOKIE = '') {
return 404;
}
}
}
server {
listen 80;
location / {
return 404;
}
}

}

Reply Quote

RSS

Subject	Author	Posted
How to check the existence of a http-only secure cookie	mrtn	February 20, 2013 05:10PM
Re: How to check the existence of a http-only secure cookie	Francis Daly	February 20, 2013 05:24PM
Re: How to check the existence of a http-only secure cookie	mrtn	February 21, 2013 08:27AM
Re: How to check the existence of a http-only secure cookie	Valentin V. Bartenev	February 21, 2013 08:42AM
Re: How to check the existence of a http-only secure cookie	kalpesh.patel@glgroup.com	March 11, 2013 05:54PM
Re: How to check the existence of a http-only secure cookie	Valentin V. Bartenev	March 12, 2013 03:02AM
Re: How to check the existence of a http-only secure cookie	kalpesh.patel@glgroup.com	March 12, 2013 01:38PM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 190

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018