HTTP State Management Mechanism, April 2011
- Canonical URL:
- File formats:
- PROPOSED STANDARD
- RFC 2965
- A. Barth
- httpstate (app)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 2965. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.