Information on RFC 6265 » RFC Editor (original) (raw)

File formats:

icon for text file icon for PDF icon for HTML icon for inline errata

Status:

PROPOSED STANDARD

Obsoletes:

RFC 2965

Author:

A. Barth

Stream:

IETF

Source:

httpstate (app)

Cite this RFC: TXT | XML | BibTeX

DOI: https://doi.org/10.17487/RFC6265

Discuss this RFC: Send questions or comments to the mailing list http-state@ietf.org

Other actions:View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 6265

Abstract

This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 2965. [STANDARDS-TRACK]

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.