Options

A10 Cookie Header Setting

anilperumandlaanilperumandla Member
in Root

The A10 is currently writing a "Secure" attribute on some outgoing cookies because HTTPS traffic terminates at the A10 and the applications cannot add this attribute on HTTP traffic. However, it appears that instead of adding it to an existing cookie, we are seeing the header Set-Cookie being sent twice - the first time without the Secure attribute and the second time with the Secure attribute.

How can the logic be changed to not send the Set-Cookie header twice?

Screenshot


image.png


Tagged:
Sign In or Register to comment.