Validity of HTTP set-cookie header
问题 I've been focusing on issues relating to cookies. The code below only has line breaks where ; are present to make the header easier to read. Is there any validity issues or other aspects in this header that would throw off Firefox or Chrome for any reason? Set-Cookie: session=cee1226c3221ab3deaf5777102a7657c; expires=Tue, 24-Mar-2020 01:52:24 GMT; Max-Age=3600; path=/; domain=www.example.com; secure; HttpOnly Request is over an HTTPS connection. There is zero intention of allowing clients to