Question & Answer
Question
Why is the WebSEAL PD_STATEFUL cookie not set as Secure for HTTPS?
Cause
WebSEAL only sets session cookies as Secure.
Answer
An HTTP Transformation rule can be used. Two examples are provide. The first is a rule for just a specific PD_STATEFUL cookie. The second will set the Secure flag for all cookies.
SPECIFIC COOKIE
<xsl:template match="//HTTPResponse/Cookies">
<xsl:if test="Cookie/@name='PD_STATEFUL_aeaf6968-7bd1-11e5-9b28-000c29f4ac05'">
<Cookie action="update" name="PD_STATEFUL_aeaf6968-7bd1-11e5-9b28-000c29f4ac05">
<Secure>1</Secure>
</Cookie>
</xsl:if>
</xsl:template>
ALL COOKIES
<xsl:template match="//HTTPResponse/Cookies">
<xsl:for-each select="Cookie">
<Cookie action="update" name="{@name}">
<Secure>1</Secure>
</Cookie>
</xsl:for-each>
</xsl:template>
Production documentation links for creating an HTTP Transformation:
ISAM 7
http://www-01.ibm.com/support/knowledgecenter/SSPREK_7.0.0.1/com.ibm.isam.doc_80/ameb_webseal_guide/concept/con_http_transforms.html?lang=en
ISAM 8
http://www-01.ibm.com/support/knowledgecenter/SSPREK_8.0.1.3/com.ibm.isamw.doc/wrp_config/concept/con_http_transforms.html?lang=en
ISAM 9
http://www-01.ibm.com/support/knowledgecenter/SSPREK_9.0.0/com.ibm.isam.doc/wrp_config/concept/con_http_transforms.html?lang=en
** The HTTP Transformation rule feature is not available for TAM 6.X versions **
[{"Product":{"code":"SSPREK","label":"Tivoli Access Manager for e-business"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"WebSEAL","Platform":[{"code":"PF004","label":"Appliance"}],"Version":"7.0;8.0.0.2;8.0.0.4;8.0.0.5;8.0.1;8.0.1.2;8.0.1.3","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Product Synonym
ISAM
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21970418