we have a customer who wants to send ebXML over HTTP.
However this fails.
He gets the error
No '=' found for token starting at position 48
after getting our HTTP response (sniffed HTTP traffic on customer side):
HTTP/1.1 500 OK Date: Thu, 27 Aug 2009 15:00:21 GMT Content-Type: text/xml Content-Length: 1059 [B]Set-Cookie: ssnid=317bc000931a11de8e518db04e3e3dbf; path=/; HttpOnly[/b] Via: 1.1 server.xyz.com Connection: close
Now, position 48 is the postion where the HttpOnly starts. Since it does not have a “value” (name=value), the software at the customer’s side runs into an error. And we do not get the data we want.
Is there a possibility in the IS to turn this HttpOnly flag off?
(As I learned, The HttpOnly flag is not part of any standard, and is not implemented in all browsers, so we could maybe turn it off without any problem?!)