RFC 6265

HTTP State Management Mechanism, April 2011

Canonical URL:
https://www.rfc-editor.org/rfc/rfc6265.txt
File formats:
Plain TextPDF
Status:
PROPOSED STANDARD
Obsoletes:
RFC 2965
Author:
A. Barth
Stream:
IETF
Source:
httpstate (app)

Cite this RFC: TXT  |  XML

DOI:  http://dx.doi.org/10.17487/RFC6265

Discuss this RFC: Send questions or comments to http-state@ietf.org

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 2965. [STANDARDS-TRACK]


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×