How To Set Up Secure Cookie On WebLogic Server for Hyperion Products
(Doc ID 1569358.1)
Last updated on DECEMBER 05, 2019
Applies to:Hyperion Financial Management - Version 22.214.171.124.000 and later
Hyperion Analytic Provider Services - Version 126.96.36.199.105 and later
Hyperion Foundation Services (including Smartview for Office Toolkit) - Version 10.1.3.4.1  and later
Hyperion Essbase Administration Services - Version 188.8.131.52.000 and later
Hyperion Financial Reporting - Version 184.108.40.206.509 and later
Information in this document applies to any platform.
A common Web security problem is session stealing. This happens when an attacker manages to get a copy of your session cookie, generally while the cookie is being transmitted over the network. This can only happen when the data is being sent in clear-text; that is, the cookie is not encrypted.
EPM System web application sets a cookie to track the session. While setting a cookie, especially a session cookie, the server can set the secure flag, which forces the browser to send the cookie over a secure channel. This behavior reduces the risk of session hijacking.
Secure cookies are available only if EPM System products are deployed in an SSL-enabled environment.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document
|Essbase - APS|
|Essbase - EAS|
|Hyperion Financial Management (HFM)|
|Financial Reporting (FR)|