flush-cookie
Use the flush-cookie stanza entry to specify the browser cookies which
should be cleared when a session is first established.
Syntax
flush-cookie = <cookie-details>Description
Specifies a cookie which will be cleared in the browser when a session, either authenticated or unauthenticated, is first established. This provides a mechanism to reset stale cookies which might be present in the browser. If you are really concerned about sensitive cookies being left in the browser the embedded WebSEAL cookie jar functionality should be configured to internally store those sensitive cookies.
Multiple attributes can be added to the cookie definition, delimited by the ';' character. The supported attributes include: Path, Domain. The constructed cookie (which can include the path and domain attributes) must exactly match the cookie which is to be flushed, otherwise the browser will not be able to locate and clear the correct cookie.
This entry may be repeated multiple times, once for each cookie which is to be flushed.
Options
<cookie-details>- The name of the cookie which is to be deleted, along with optional path and domain attributes.
Usage
This stanza entry is optional.
Default value
None.
Example
flush-cookie = MyAppCookie
flush-cookie = MyJctCookie;Path=/jct/
flush-cookie = MyDomainCookie;Path=/jct/;Domain=ibm.com