asp.net_sessionid\u003d path\u003d/ httponly
ASP.NET Session states Sessions.How to use Session Events: SessionOnStart and SessionOnEnd. Asp.Net Page Life Cycle.Start with canvas. Draw Path and Lines. Home IIS.NET Forums IIS 5 IIS 6 Classic ASP Setting HTTPonly secure for ASP session cookie.I am using IIS 6 CLASSIC ASP under windows 2003 server. Is there any way to make ASP session cookie secure HttpOnly ? Add the Microsoft.AspNet.Session NuGet package to your project. VERSION WARNING: If youre using ASP.NET 5 before RTM, make sure the beta version is the same across your whole project. Set-Cookie: ASP.NETSessionIdjvlp2yfgkjbgynioovodcneu path/ HttpOnly. ASP.NET is quite liberal in its session handling as long as it receives a valid session ID, i.e. a 24-character string consisting of characters a-z and 0-5. Id like to move my ASP.NET session ID from the default cookie into the URL.