Configuring Secure Session Cookies
When using HTTPS, mark all your cookies as secure, which means they are only transmitted over HTTPS protocols.
This flag is useful for sites that allow both HTTPS and HTTP traffic, since it protects from HTTP redirection carrying session cookies across unencrypted connections.
To Configure the Secure Flag
Log in to the AM console as an administrative user, for example,
amAdmin
.Navigate to Configure > Server Defaults > Security > Cookie.
Enable the Secure Cookie switch, and save your changes.
Restart AM or the container where it runs.