tags:

views:

60

answers:

2
+1  Q: 

Does a cookie have to be set in the http header?

Would like to set cookies from the server (CGI - C)
Can it be set after the header has been printed?

Thanks.

+2  A: 

You can set cookies using JavaScript embedded in an HTML document, or via a few other mechanisms, such as Flash.

Other than that though, the header is the only place in HTTP you can set them.

David Dorward  2010-02-08 18:59:18
Note that setting cookies in the header and using the HTTPOnly flag is helpful for security - it prevents JavaScript code from reading the cookie, which can stop XSS attacks from hijacking the user's session by stealing their cookies. See http://www.owasp.org/index.php/HTTPOnly and the slightly dated http://www.codinghorror.com/blog/archives/001167.html
aem  2010-02-08 19:19:07
+4  A: 

Not directly, cookies that come directly from the server must be explicitly set in the response header using Set-Cookie. See here for a thorough explanation.

AndiDog  2010-02-08 19:00:36
how do you do this "indirectly" ?
Tommy  2010-02-08 22:47:22
By "indirectly", I mean all forms of setting a cookie without the HTTP header. For example on the client side, like David Dorward already pointed out.
AndiDog  2010-02-09 08:00:50

related questions

Autosizing Textarea
Regular expression for parsing links from a webpage?
What are good tools for creating compiled HTML help files (.chm)?
Looking for WYSIWYG HTML editor
Any reason not to start using the HTML 5 doctype?
HTML comments break down
HTML Comments Markup
Setting a div's height in HTML with CSS
Wrapping lists into columns
Is a "Confirm Email" input good practice when user changes email address?
<XMP> Tag
HTML version choice
Options for HTML scraping?
How do you disable browser Autocomplete on web form field / input tag?
How do I make a checkbox toggle from clicking on the text label as well?
Html CSS Editor
Wordpress theme development offline tools
How do I give my web sites an icon for iPhone?
In HTML, how to word-break on a dash?
Detecting font in JavaScript
How do you test layout design across multiple browsers/OSs?
How do I print an HTML document from a web service?
Multiple submit buttons on a HTML form
How can I determine a web user's time zone?
Why doesn't the percentage width child in absolutely positioned parent work in IE7?