Cookie Encryption
About
Cookie Encryption action is used to encrypt cookie information of requests incoming to or outgoing from vServices during request or response time. The contents of specified cookies are fully encrpyted after this action, so the client cannot view or understand the contents of the cookies this action is applied to. This procedure minimizes possible security threats and enhances the reliability of the web application.
How to Add?
To add the Cookie Encryption action from TR7 ASP web interface, "Traffic Manager > Traffic Manipulation > Actions > Add" steps are followed. At the current page Cookie Encryption is selected as an Action Type and the following form is shown.
Applicable vServices
- HTTP
- L7 TCP
- Network
Interface
Cookie Encryption Form
- Action Name
Name for the action is entered.
- Action Type
Cookie Encryption is selected.
- Cookies to Encrypt
By default, when this action is created, All Cookies are selected for encryption.
To only encrypt selected cookies All Cookies button can be switched to Certain Cookies. To encrypt certain cookies, their names can be written as below. If Certain Cookies option is selected an no cookie name is given, no encryption will take place.
- Encrypted and Unencrypted Examples of the Cookie Named "test_cookie" Which Is Created by the Server
Before Cookie Encryption
After Cookie Encryption
- Form Buttons
Add button can be clicked to add the configured action.
Add & Repeat button can be clicked to add the configured action. New similar actions can also be added without losing the current configuration by clicking this button. The following alert is shown when the button is clicked.
Condition Requirement
Cookie Encryption action does not require a conditions.