Can't remove JSESSIONID cookie

Question

I am using a Spring controller with a HttpServletRequest and response to remove cookies.

When I need to remove the cookie, I have this code:

   Cookie[] allCookies = request.getCookies();

for (int i = 0; i < allCookies.length; i++)
{
   String name = allCookies[i].getName();
   if (name.equalsIgnoreCase("JSESSIONID"))
   {
    logger.info(i + " Name=" + name + " Value=" + allCookies[i].getValue());
    cookieToDelete = allCookies[i];
    cookieToDelete.setValue("");
    cookieToDelete.setMaxAge(0);
    cookieToDelete.setVersion(0);
    cookieToDelete.setPath("/");
    response.addCookie(cookieToDelete);
   }
}

After this execution, all cookies with the name JSESSIONID should be removed. What is my mistake?

score 3 · Answer 1 · edited May 23 '17 at 12:03

3

Try setting the content type and domain as explained here How do you remove a Cookie in a Java Servlet .You cold also try expiring the session using SessionRegistry explained here

edited May 23 '17 at 12:03

Community

1
1

answered Dec 14 '11 at 18:22

Aravind A

9,507
4
36
45

Can't remove JSESSIONID cookie

1 Answers1

Linked