← Back to glossary
πŸͺ

Secure Cookie Flag

Web Security

TLS (Transport Layer Security) HTTPS Cookie Session Cookie

A cookie setting that only sends the cookie over HTTPS.

Definition

The Secure flag tells the browser to send a cookie only over encrypted HTTPS connections.

In plain English A cookie setting that only sends the cookie over HTTPS.

Why this matters

Why it matters: It reduces the chance of cookies leaking over insecure networks.

Example

Example: A login cookie is marked Secure so it won’t be sent over HTTP.