How to get jetty to send jsessionid-cookies with the secure-flag when using a secure channel

Question

I am using Tomcat in my production environment and jetty in my testing environment (via jetty-maven-plugin).

Tomcat sets the secure-flag on a jsessionid-cookie, when it

Answer 1

The configuration changes needed to set the secureCookies property can be added to the jetty-web.xml file:

  
    true