Type Alias

NSHTTPCookieStringPolicy

Values that indicate whether to restrict the cookie to requests sent back to the same site that created it.

Declaration

typedef NSString *NSHTTPCookieStringPolicy;

Discussion

RFC 6265 defines “same site” as the registerable domain of a URI.

Topics

Policies

NSHTTPCookieSameSiteStrict

A policy that prohibits a cross-site request from including the cookie.

NSHTTPCookieSameSiteLax

A policy that allows certain cross-site requests to include the cookie.

See Also

Securing Cookies

HTTPOnly

A Boolean value that indicates whether the cookie should only be sent to HTTP servers.

secure

A Boolean value that indicates whether the cookie may only be sent over secure channels.

sameSitePolicy

A Boolean value that indicates whether to restrict the cookie to requests sent back to the same site that created it.