Skip to main content
ExLibris

Knowledge Assistant

BETA
  • Subscribe by RSS
  • Back
    Aleph

     

    Ex Libris Knowledge Center
    1. Search site
      Go back to previous article
      1. Sign in
        • Sign in
        • Forgot password
    1. Home
    2. Aleph
    3. Knowledge Articles
    4. Configure Secure Cookies Creation in Apache

    Configure Secure Cookies Creation in Apache

    1. Last updated
    2. Save as PDF
    3. Share
      1. Share
      2. Tweet
      3. Share
    No headers

     

    • Product: Aleph
    • Product Version: 20, 21, 22, 23
    • Relevant for Installation Type: Dedicated-Direct, Direct, Local, Total Care

     

    Desired Outcome Goal:
    Set Apache to add secure and httpOnly flags to cookies created by Apache

     

    Procedure:
    1. Add this line to httpd.conf file: 
    Header always edit Set-Cookie ^(.*)$ $1;HttpOnly;secure 

    2. In find-b, add the secure attribute to the JavaScript set cookie:
    function setCookie() { document.cookie = "ALEPH_SESSION_ID = $SESS; path = /; secure"; } 
    HttpOnly can't be used since by definition this is a cookie set by JavaScript

    3. Restart www_server and Apache
     

    Additional Information

    * Apache must be using SSL.
    * The always condition is required when editing headers set by CGI scripts.

     

     


    • Article last edited: 15-May-2016
    View article in the Exlibris Knowledge Center
    1. Back to top
      • Configure file-90 to create more than one item/holding
      • Configuring Aleph 21 for ARC 3.0, z900 triggers
    • Was this article helpful?

    Recommended articles

    1. Article type
      Topic
      Language
      English
      Product
      Aleph
    2. Tags
      1. Apache
      2. cookies
    1. © Copyright 2025 Ex Libris Knowledge Center
    2. Powered by CXone Expert ®
    • Term of Use
    • Privacy Policy
    • Contact Us
    2025 Ex Libris. All rights reserved