FreeKB - IBM WebSphere Cookie expiration (timeout)
IBM WebSphere - Cookie expiration (timeout)

You may want to first read about the difference between a session and a cookie.

There are two cookie management levels. You can set the cookie management settings at the application server level, or at the application level. The settings at the application level will take precedence over the settings at the application server level.

Application:

  1. In the WebSphere admin console, expand Application > Application Types, and select Websphere enterprise applications.
  2. Select an application.
  3. Select Session management.
  4. Select Enable cookies.

Application server:

  1. In the WebSphere admin console, expand Server > Server Types, and select Websphere applications servers.
  2. Select an application server.
  3. Select Session management.
  4. Select Enable cookies.

 

The default, the cookie will be removed when every browser tab is closed. This can be changed so that the cookie is removed after x seconds. In this example, the cookie will be removed after 60 seconds. After making this change, restart the application or restart the JVM for this change to take effect.

 

Viewing the cookie in the browser confirms that cookie will only survive for 1 minute. This isn't very pratical for a web application, but would probably be ideal for a backend service.

Add a Comment




We will never share your name or email with anyone. Enter your email if you would like to be notified when we respond to your comment.




Please enter 48d6e in the box below so that we can be sure you are a human.




Comments

Web design by yours truely - me, myself, and I   |   jeremy.canfield@freekb.net   |