megaphone
Update your Profile with your Support type to get your Support Type badge.
Nominate Your Peers for NetSuite Support Community's Choice of the Quarter! Submit your nomination today.
Stay in the know of how NetSuite can help grow your business with our guides, webinars, and events. Subscribe Here
What Topic Should We Cover Next? Your idea could be our next feature—drop your suggestion now!
Try Intelligent Payment Automation – Fee Free For Your First Month For more information, visit this thread.
New AI Community Guidelines. Please review and follow them to ensure AI use stays safe, accurate, and compliant.
Check out the Announcements page to stay updated with the latest news, updates, upcoming events, and important community information!
What if your ERP could help surface the next step before you go looking for it? Watch here to learn more!

Discussions
Stay up-to-date with the latest news from NetSuite. You’ll be in the know about how to connect with peers and take your business to new heights at our virtual, in-person, on demand events, and much more.
New AI Community Guidelines. Please review and follow them to ensure AI use stays safe, accurate, and compliant.
Keep an eye out for upcoming NetSuite events, including meetups, workshops, and webinars. These sessions are a great way to connect with peers, learn from experts, and stay current on the latest NetSuite updates and best practices. Registration links are provided in each event.

Introducing Secure and HttpOnly Session Cookie Attributes in 2017.2

in Announcements

 

Secure and HttpOnly Session Cookie Attributes in 2017.2
  This notice is to inform you that beginning in NetSuite 2017.2, the application will be protecting session cookies with Secure and HttpOnly attributes. The Secure attribute limits the scope of the cookie to secure channels, for example, HTTPS. The HttpOnly attribute instructs the user agent to omit the cookie when providing access to cookies through non-HTTP APIs, such as APIs that use JavaScript. For more information, refer to sections 4.1.2.5 and 4.1.2.6 of RFC 6265 (https://tools.ietf.org/html/rfc6265).

We have identified those accounts containing SuiteScript, JavaScript, or HTML files that reference a JSESSIONID cookie. Our introduction of the Secure and HttpOnly attributes for session cookies is targeted for implementation when your account is upgraded to NetSuite 2017.2.

Regards,

@Robert Nedelkow-Oracle | NetSuite Support Community Administrator

Q2 2026 Community Choice Nominations: Recognize a member who made a difference in our community!

nsc-choice-program_banner1.gif

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!

Leaderboard

Community Whiz

Quarter 2 (Apr-Jun 2026)

This Week's Leaders

This Month's Leaders

All Time Leaders