Posts tagged weblogic.xml

Middleware> Secure Liferay Session Cookie (JSESSIONID) in WebLogic

Aug19
2013 Written by Scott Rowley

Extract the WEB-INF/weblogic.xml file from your liferay.war:

jar -xvf WEB-INF/weblogic.xml

Edit WEB-INF/weblogic.xml

vi WEB-INF/weblogic.xml

Add the following to the <session-descriptor> tag:

<cookie-secure>true</cookie-secure>

Update your liferay.war file

jar -uf liferay.war WEB-INF/weblogic.xml

Now redeploy your liferay.war (update or delete/install) and your cookie should be changed to Secure: Yes.

Secure Liferay session cookie

Posted in liferay, middleware, Security - Tagged cookie, cookie-secure, liferay, liferay.war, middleware, secure, session, session-descriptor, weblogic

Corrections? Questions? Comments?

Find an error?
Everything work out great for you?
Have some feedback?
Like to see something added to the article?

PLEASE leave us a comment after the article and let us know how we are doing, or if something needs corrected, improved or clarified.

Thank you!
- The Management

Advertisement

Back to Top