Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join the Fabric FabCon Global Hackathon—running virtually through Nov 3. Open to all skill levels. $10,000 in prizes! Register now.

Reply
Anonymous
Not applicable

HttpOnly Attribute Not Set to True

‎05-26-2020 05:32 AM

During security scanning of our PowerBI App, we found that multiple cookies HttpOnly attribute are still set to False within https://app.powerbi.com.  Is there a way to make sure or set them all to True?

 

Sample cookies:

ClusterUri

ai_session

ai_user

PowerBISignedInFlag

PreferredLanguage

 

Labels:
Message 1 of 4
2,073 Views
0
3 REPLIES 3
DoganErarslan
New Member

‎07-26-2024 12:18 AM

Hello,

This problem continues for me too. Did you find a solution?

 

httponly.PNG

 

Best Regards

Message 4 of 4
583 Views
0
zikoum
New Member

‎03-12-2021 06:08 AM

Hello,
I am interested to know if there is a solution for Power BI Server 2017?mainly for ai_session
Best regards,
Mohamed

Message 3 of 4
1,893 Views
0
v-lionel-msft
Community Support
Community Support

‎05-27-2020 12:17 AM

Hi @Anonymous ,

 

It's impossible to achieve the idea in current version(Service version13.0.13322.215).

But you don't need to worry about its security. As a service deployed on the Azure,  its security is officially guaranteed by Microsoft.

cc6.PNG

 

Best regards,
Lionel Chen

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Message 2 of 4
2,047 Views
0

Helpful resources

Announcements
September Power BI Update Carousel

Power BI Monthly Update - September 2025

Check out the September 2025 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All
Top Solution Authors
View All