RE: Re: Re: Unable to unset Set-Cookie response header&In-Reply-To=<CALK=YjMJ7NhnvbyG-3boLMr3sdbCGujmgej2x0EXPGKh=kdd0w@xxxxxxxxxxxxxx>
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: users@xxxxxxxxxxxxxxxx
- Subject: RE: Re: Re: Unable to unset Set-Cookie response header&In-Reply-To=<CALK=YjMJ7NhnvbyG-3boLMr3sdbCGujmgej2x0EXPGKh=kdd0w@xxxxxxxxxxxxxx>
- From: Luigi Bellio <luigi.bellio@xxxxxxxxx>
- Date: Tue, 14 Nov 2023 21:09:10 +0100
- Reply-to: users@xxxxxxxxxxxxxxxx
- User-agent: Mozilla Thunderbird
Hi Rainer,
I tried also in this way but the "Set-Cookie" response header is
present.
I did further tests ... the response header is set also when
returning static resources, for example
Set-Cookie:
7133ee39c88e27dfb06de1e1feafdacd=64ca85231009a6bb674397ffaccb3d14;
path=/; HttpOnly; Secure; SameSite=None
can I disable Apache HTTPd cookie generation?
Thanks for your support,
Luigi.
On 2023/11/14 15:53:17 Rainer Canavan wrote:
> On Tue, Nov 14, 2023 at 3:24 PM Luigi Bellio
<lu...@xxxxxxxxx> wrote:
> >
> > Hi Eric,
> >
> > thanks for your feedback ... I just tried, nothing is
changed ...
> > moreover as documented the "always" directive should apply
to all
> > response codes not only "on success".
>
> You're missing one important issue the documentation raises:
> https://httpd.apache.org/docs/2.4/mod/mod_headers.html#header
> "always" and "onsuccess" apply to different sets of headers,
therefore it
> might help if you try duplicating your 'Header unset' line, one
with *and* one
> without "always".
>
> Rainer
>
>
---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
> For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
>
>
[Index of Archives]
[Open SSH Users]
[Linux ACPI]
[Linux Kernel]
[Linux Laptop]
[Kernel Newbies]
[Security]
[Netfilter]
[Bugtraq]
[Squid]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Samba]
[Video 4 Linux]
[Device Mapper]