Remove SMSESSION cookie with mod_headers module

Document ID : KB000072450
Last Modified Date : 01/03/2018
Show Technical Document Details
Introduction:
12.52 SP1 CR07 WebAgent on Apache 2.4.25 sets two SMSESSION cookies in HTTP_COOKIE request header variable when SessionGracePeriod (30sec) has passed after the previous SMSESSION cookie was issued.
The length of two SMSESSION cookies exceeds the limit of request header size of a backend application.
Question:
Can we remove the SMSESSION cookies in the HTTP_COOKIE request header variable with the mod_headers module in Apache HTTP Server?
Answer:
Yes, you can remove the SMSESSION cookies from the HTTP request header.
SMSESSION cookies are necessary for maintaining user sessions between Web browser and WebAgent, unnecessary for backend applications.
Ā