How to disable long-lived HTTP cookie

Hi,

Does anyone know how to disable long-lived HTTP cookie

Our internal security policy banned the use of cookies for authentification.

When the file $catalina_home/atlassian-jira/WEB-INF/classes/jira-application.properties was still in use, set

jira.option.allowcookies=false

desactivated long-lived HTTP cookie and hid checkbox

I could set

<init-param>
    <param-name>autologin.cookie.age</param-name>
    <param-value>0</param-value>
</init-param>

but checkbox will still display. And it's a little bit ugly :(

Sincerely

F.P


1 answer

1 accepted

Accepted Answer
1 vote

Hi Fabrice,

JIRA's cookies are configured in the seraph-config.xml file, so you need to edit the life of the cookies there: https://confluence.atlassian.com/display/JIRA/JIRA+Cookies

You
can also disable cookies by editing the file found at <JIRA_INSTALL_DIR>/atlassian-jira/includes/loginform.jsp for a more permanent solution, as described in this knowledge base article: https://confluence.atlassian.com/display/JIRA/Disabling+Remember+My+Login+on+this+Computer

Hope
that helps,
John

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Sep 18, 2018 in Jira

What modern development practices are at the heart of how your team delivers software?

Hey Community mates! Claire here from the Software Product Marketing team. We all know software development changes rapidly, and it's often tough to keep up. But from our research, we've found the h...

24,173 views 2 7
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you