@GetMapping("/setCookie")
public ResponseMode<JSONObject> setCookie(HttpServletResponse response){
//create a cookie
Cookie cookie = new Cookie("username","qimh");
//expires in 7 days
cookie.setMaxAge(7 * 24 * 60 * 60);
//安全cookie是仅通过加密的HTTPS连接发送到服务器的cookie。 安全cookie无法通过未加密的HTTP连接传输到服务器。
//cookie.setSecure(false);
//HttpOnly cookie用于防止跨站点脚本(XSS)攻击,无法通过JavaScript的Document.cookie API访问。 当为cookie设置HttpOnly标志时,它告诉浏览器该服务器应该只访问该特定cookie
cookie.setHttpOnly(true);
cookie.setPath("/");
//add cookie to response
response.addCookie(cookie);
JSONObject jsonObject = new JSONObject();
jsonObject.put("token1","123456");
return ResponseMode.success(jsonObject);
}
参考连接:https://baijiahao.baidu.com/s?id=1640555035422789161&wfr=spider&for=pc