cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

WEBUI and the WEBUIJSESSIONID COOKIE

florent_duchate
Dynatrace Pro
Dynatrace Pro

The documentation is quite detailed about the DT COOKIE for UEM and especially around security but what about WEBUIJSESSIONID for the webUI?

I'm working with a customer who is asking the usual question but for the webUI. I cannot find any information anywhere.

I know that the access isn't customer facing (hosted internally) but it is still a valid set of questions.


  • expires. Cookie can
    have an expiry date and time after which the cookie is deleted by user’s
    browser. -> the cookie is not persisted and is deleted when the browser is closed
  • domain. Restricts
    the hostname and domain name of sites that may receive this cookie. -> the domain seems to be empty and I couldn't find a property to set it.
  • path. Restricts the
    URI path that may receive this cookie. -> it seems to be empty
  • secure. Cookie can
    only be transmitted over HTTPS protocol. -> yes because the webui only listens on https anyway.
  • httpOnly. Cookie
    cannot be accessed by client-side scripting languages, such as JavaScript and
    VBScript -> don't know.

Thanks

Flo

2 REPLIES 2

nva_dt
Dynatrace Pro
Dynatrace Pro

Hi Flo,

Would it best to open a support ticket and eventually a development case to study those points?

It's true that the connection is secured anyway so it should not be of a concern.

Nic

dmitri_gristsen
Inactive

Hi Florent,


The cookie's configuration is currently automatically set by dynatrace and is not changable by the user.

  • expires: is always "session", so as soon the browser is closed the cookie is deleted
  • domain: is empty, so the cookie is only used when the domain matches exactly
  • path: is set to "/", so it is valid on all paths in this domain
  • secure: only sent back to the browser when the connection is secure(HTTPS - currently the only option).
  • httpOnly: is set, so no access via JavaScript


Regards,


Dmitri