Hello A web site was developed and deployed to client. In some cases, I

Question

0

Asked: May 17, 20262026-05-17T16:25:23+00:00 2026-05-17T16:25:23+00:00

Hello A web site was developed and deployed to client. In some cases, I

0

Hello
A web site was developed and deployed to client. In some cases, I need to set the flag HttpCookie.HttpOnly = true. Okay – I have done it. Next question:

Is Cookie available after setting flag in JavaScript?
or maybe some restriction when I am using JavaScript?
or do I need to make some changes in existing JavaScript?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-17T16:25:24+00:00

Editorial Team

2026-05-17T16:25:24+00:00Added an answer on May 17, 2026 at 4:25 pm

The purpose of using HttpOnly is to prevent Javascript from accessing the cookie, primarily to prevent XSS attacks. There are decent write-ups on CodingHorror and MSDN about it.

Bottom line: if you need access to the cookie with Javascript you can not use HttpOnly.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Hello A web site was developed and deployed to client. In some cases, I

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply