Assembly: System.Web (in system.web.dll)
The HttpCookiesSection class provides a way to programmatically access and modify the httpCookies section of a configuration file.
It defines the settings applied by default to all cookies issued by the application, unless the code issuing the cookie overrides them.
One objective of the httpCookies element is to support the use of HttpOnly cookies. HttpOnly cookies (cookies with the HttpOnly attribute) were introduced in Internet Explorer 6 to help mitigate the risk of cross-site scripting. The HttpOnly attribute prevents cookies from being accessed through client-side script. Any information contained in an HttpOnly cookie is less likely to be disclosed to a hacker or a malicious Web site. For more information, search MSDN (msdn.microsoft.com) for "HttpOnly."
The following code example shows how to obtain the HttpCookiesSection object from the configuration file of an existing Web application.
// Get the Web application configuration. System.Configuration.Configuration webConfig = WebConfigurationManager.OpenWebConfiguration("/aspnetTest"); // Get the section. string configPath = "system.web/httpCookies"; System.Web.Configuration.HttpCookiesSection httpCookiesSection = (System.Web.Configuration.HttpCookiesSection)webConfig.GetSection( configPath);