Thanks for the response. I am assuming this done by Jetty Server.
The URL we are trying is the very first URL i.e., login page, post login we do have filter classes where we are doing some modifications. Thanks Sai From: Joakim Erdfelt <[email protected]> Sent: Wednesday, July 14, 2021 9:49 PM To: JETTY user mailing list <[email protected]> Cc: Sai Sankar Challa <[email protected]> Subject: Re: [jetty-users] SameSite to STRICT What does the actual HTTP Response that created that JSESSIONID look like? Joakim Erdfelt / [email protected]<mailto:[email protected]> On Wed, Jul 14, 2021 at 11:07 AM Sai Sankar Challa via jetty-users <[email protected]<mailto:[email protected]>> wrote: Hi Team We upgraded our Jetty version to 9.4.38.v20210224 and we want to Set 'SameSite' attribute to 'Strict' in JSESSIONID for our portal security . We made the code changes as per below in our web.xml and still not seeing any difference. <session-config> <cookie-config> <http-only>false</http-only> <secure>false</secure> <comment>__SAME_SITE_STRICT__</comment> </cookie-config> </session-config> Browser Cookie [cid:[email protected]] Can you please through some idea to get this done . Thanks Sai _______________________________________________ jetty-users mailing list [email protected]<mailto:[email protected]> To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users
_______________________________________________ jetty-users mailing list [email protected] To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users
