Pega sending Cookies in header for stateless service response

GOURABKETAN · August 15, 2024, 5:15pm

While sending the response pega sending some cookies in header. We are not explicitly sending those, it is OOTB. The service package is “Stateless”.

Cookies are,

JSESSIONID cookie,

PEGA-SESSION-COOKIE

PEGA-SESSION-COOKIE-CORS

Could someone help me to understand why Pega send these, and if there is a way to STOP that. We are in Pega cloud Infinity 23.

RameshSangili · August 15, 2024, 8:25pm

@GOURABKETAN

Please check this link about your question - PEGA-SESSION-COOKIE | Support Center

Also, more details are documented in Pegasystems Documentation

I hope this helps!

GOURABKETAN · September 3, 2024, 8:08am

@RameshSangili is there any way to subpress the cookies? it will be bit hard to make the clients understand why we are dumping cookies to their machines.

Conversation		Replies	Views
PEGA-SESSION-COOKIE General security , 8-8-5	1	485	July 28, 2024
Pega web embed and use of third party cookies User Experience user-experience , lead-system-architect , 8-8-3	2	659	September 19, 2023
Open Pega from third party app - preflight issue General pega-platform , security , case-management , 8-7-4	1	79	August 15, 2024
Pzc token handling at runtime in jmeter test General pega-platform , constellation , team-lead , other-industry , 24-2	2	222	January 20, 2025
VA Scan remediation - HSTS Missing From HTTPS Server Blueprint and App Design enterprise-application-development , 7-4	2	193	April 23, 2024

Pega sending Cookies in header for stateless service response

Related topics