Accessing Authentication Cookie with js

  • Thread starter Thread starter Khafancoder
  • Start date Start date
K

Khafancoder

Hi guys,

is it possible to access ASP.Net authentication cookie through
javascript ?

thanx
 
Kanfancoder,
A "Cookie is a Cookie is a Cookie". Since Javascript can read and write
cookies, the short answer is "yes, you can".
However - being able to decrypt an authentication cookie via client script
is another issue.
Peter
 
Thanks, but i heard abt HttpOnly cookies that aren't accessible
through JS, i want to know if asp.net uses these kind of cookies or
not !?
 
Khafancoder said:
Thanks, but i heard abt HttpOnly cookies that aren't accessible
through JS, i want to know if asp.net uses these kind of cookies or
not !?
Click to expand...

Most likely not. It's only supported by IE6+ and no other browsers as
far as I can tell. As it's not standard, any browser can choose to
ignore the cookie if you add the HttpOnly option.
 
Thanks, very useful.

Most likely not. It's only supported by IE6+ and no other browsers as
far as I can tell. As it's not standard, any browser can choose to
ignore the cookie if you add the HttpOnly option.
Click to expand...
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

RequireSSL set to true, some cookies not marked as secure 0
Authentication cookie security 1
Once in a while, a few users can not authenticate.. 1
jquery .js file = windows authentication dialogue? 2
Authentication Cookie not in Request.Cookies 1
ASP.NET Forms Authentication Cookie 3
Site Security - Best Practises 1
Authentication and sessions 5

Back
Top