The App Engine only provides the content for your app using Jetty. Session gets created when you call request.getSession() for the first time and consequently JSESSIONID cookie is created when the session is created. Hope this explanation works for you?
--
You received this message because you are subscribed to the Google Groups "Google App Engine" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscribe@googlegroups.com.
To post to this group, send email to google-appengine@googlegroups.com.
Visit this group at https://groups.google.com/group/google-appengine.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/8d2af3bc-a494-4eee-9e91-f4d52c50c6bc%40googlegroups.com.
You can add it by implementing a filter. Here, you may find a sample on how to implement a security filter which can be applied for HttpOnly similarly. For any question on Jetty, I recommend that you post your question in the respective community group.
You can add it by implementing a filter. Here, you may find a sample on how to implement a security filter which can be applied for HttpOnly similarly. For any question on Jetty, I recommend that you post your question in the respective community group.
--
You received this message because you are subscribed to the Google Groups "Google App Engine" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscribe@googlegroups.com.
To post to this group, send email to google-appengine@googlegroups.com.
Visit this group at https://groups.google.com/group/google-appengine.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/f94083b3-4452-49e5-a0a1-d9006912778a%40googlegroups.com.