From b9d624dae0599dff7ed7dbd6642d113e9ec901e0 Mon Sep 17 00:00:00 2001
From: Min Chen <min.chen@citrix.com>
Date: Fri, 18 Jul 2014 12:08:07 -0700
Subject: [PATCH] CS-19734:Session cookie is exposed to scripts.

Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
(cherry picked from commit 0b5b9c91e451d069c501a08a34523eccd22dff05)
Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
---
 client/tomcatconf/context.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/tomcatconf/context.xml.in b/client/tomcatconf/context.xml.in
index 9913dd149a4..a78215c7c21 100644
--- a/client/tomcatconf/context.xml.in
+++ b/client/tomcatconf/context.xml.in
@@ -16,7 +16,7 @@
   limitations under the License.
 -->
 <!-- The contents of this file will be loaded for each web application -->
-<Context allowLinking="true">
+<Context allowLinking="true" useHttpOnly="true">
 
     <!-- Default set of monitored resources -->
     <WatchedResource>WEB-INF/web.xml</WatchedResource>