I have set the httpCookies requireSSL value to true in web.config and run the web app on my local machine without https running. All runs fine apart from when I try and read the Request.Cookie.
Its not there. I assume because I don't have SSL enabled it never created it but there was no warning that it failed. I only know when I try to read a cookie value.
Should it not warn you?