Is there a way to add Secure Flag to cookies which are generated by Imperva to track the session.
Due to PCI compliance, we have been informed to have the Secure Cookie enabled to all the cookies so that it is shared via encrypted channel. I know these cookies are not sent to webserver and used only for tracking purpose. Imperva uses some java program to track the user session. Would like to know if we can force Secure flag on all the cookies ?
set-cookie |
visid_incap_2627094=6duBDa8OQcWjQ0PnLETDSLeLF2MAAAAAQUIPAAAAAABKxwdpRVtOAoy4b6fTGBYa; expires=Wed, 06 Sep 2023 06:16:53 GMT; HttpOnly; path=/; Domain=.accountverificationsolutions.com |
set-cookie |
nlbi_2627094=NpOfAbpyXzkkDwQPSA+RyQAAAADuWlMPDFcpC5dAl05DTc/z; path=/; Domain=.accountverificationsolutions.com |
set-cookie |
incap_ses_124_2627094=TlpIL7lfZjJjWqNdqYm4AbeLF2MAAAAAfszJXVRbrLydTQsfu4jJYg==; path=/; Domain=.accountverificationsolutions.com |
#CloudWAF(formerlyIncapsula)------------------------------
Shivakumar Chanda
WAF Engineer
Experian Information Solutions, Inc.
Costa Mesa CA
------------------------------