Configuring Session Resolution
How the Session is resolved can be configured with HttpSessionConfiguration.
By default sessions are resolved using an HttpSessionFilter that looks up session identifiers via either an HTTP header (using the Authorization-Info
or X-Auth-Token
header values) or via a Cookie called SESSION
.
If you wish to disable either header resolution or cookie resolution you can via configuration in application.yml
:
Disabling Cookie Resolution
micronaut:
session:
http:
cookie: false
header: true
The above configuration enables header resolution, but disables cookie resolution. You can also configure the header or cookie names as necessary.