Posting in the Magento forums has been disabled pending the implementation of a new and improved forum solution which should better serve the community.

For new questions please post at magento.stackexchange.com, the community-run support site for the Magento community. We will be providing updates on the new forum solution soon. For questions or concerns please email community@magento.com.

Magento Forum

Cookies - HTTP ONLY and SECURE
 
andysputnik
Jr. Member
 
Total Posts:  1
Joined:  2011-06-21
 

Because of legal PCI Compliance issues in the UK, I need my Magento install to support both;

http-cookie-secure-flag
and
http-cookie-http-only-flag

I’ve ticked the “HTTP ONLY” setting in admin, but when I view the resources using Chrome developer tools, it shows that neither are active (see www.sputcom3.co.uk/temp/cookie.png). This is for the cookie “adminhtml”

Compare this to the ticks you get on PayPal’s home page for example www.sputcom3.co.uk/temp/cookie2.png

Any ideas?

 
Magento Community Magento Community
Magento Community
Magento Community
Magento Community
Magento Community
Back to top