The SESSION_COOKIE element specifies that cookies the GAS uses to validate the session are created with the secure flag.



The SESSION_COOKIE element takes a mandatory Secure attribute and an optional SameSite attribute.

Example secure session cookie

    <SESSION_COOKIE  SameSite="None" Secure="TRUE" > </SESSION_COOKIE>

Secure session cookie in web-xml

Note: If using a Java Enterprise Edition (J2EE) server, the secure flag needs to be configured in the web.xml file as shown in the example:

Parent elements

This element is a child of the HTTP (Common) element.