[Mono-list] HttpOnly cookies flag supported?

James Wright james.wright at jigsawdezign.com
Fri Oct 4 15:39:09 UTC 2013


    I've added the following piece of config to my Web.config to default 
the FormsAuthentication cookie as HttpOnly;

       <httpCookies httpOnlyCookies="true" />

   However the authentication cookie still does not show as being marked 
as HttpOnly when looking at it with FireBug.

   Is this a known issue or bug in Mono? Have i missed something obvious?


OS: Amazon Linux
Mono: 3.2.0
.NET runtime: 4.5
Framework: ASP.NET MVC2.0

More information about the Mono-list mailing list