A null-terminated string that specifies the URL in the cookie.
A null-terminated string that specifies the name in the cookie.
A null-terminated string that specifies the value in the cookie.
A null-terminated string that specifies the user policy in the cookie.
A null-terminated string that specifies the date and time at which the cookie expires.
A set of bit flags that specifies properties of the cookie.
This member can be one of the values from the XHR_COOKIE_FLAG enumeration type defined in the Msxml6.h header file.
The cookie is a session cookie and not a persistent cookie.
Indicates that the cookie being set is a third-party cookie.
If this flag is set, the pwszP3PPolicy member points to a Platform-for-Privacy-Protection (P3P) header for the cookie in question.
Indicates that the cookie being set is associated with an untrusted site.
Enables the retrieval of cookies that are marked as "HTTPOnly".
Do not use this flag if you expose a scriptable interface, because this has security implications. If you expose a scriptable interface, you can become an attack vector for cross-site scripting attacks. It is imperative that you use this flag only if they can guarantee that you will never permit third-party code to set a cookie using this flag by way of an extensibility mechanism you provide.
Minimum supported client
Windows 8 [desktop apps | Windows Store apps]
Minimum supported server
Windows Server 2012 [desktop apps | Windows Store apps]