> You will also need to set useHttpOnly=false on the Context. For > security, Tomcat sets the httpOnly flag on the cookie if > either of these > are true.
Uh... Where is this documented? I was already looking for it... Thank you! --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org