Enable HTTP Only Mode

When true, mark cookies as HttpOnly to prevent scripts and third-party software from accessing them.

Default: true

Property name

com.sun.identity.cookie.httponly

Property aliases

com.sun.identity.cookie.httponly (since 4.x)

Type

Boolean: true returns true; all other strings return false.

Bootstrap property

No

Required property

No

Restart required

No

AM console tab

SSO (Available in the console from AM 7)