My Oracle Support Banner

When Running On JBoss 7.0 EAP, 'http-only' And 'secure' Session Configuration Options Are Not Configurable (Doc ID 2444789.1)

Last updated on FEBRUARY 08, 2019

Applies to:

Oracle Commerce Platform - Version 11.3 and later
Information in this document applies to any platform.


When running on JBoss 7.0 EAP, http-only and secure session configuration options are not configurable as they are being overwritten by the Oracle Commerce Platform generated file.

Specifically, there is no way to make these changes and have them respected.

If they are set in standalone config XML (jboss-all.xml) like this, they are not respected:




To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.