Cookie - Scope

Table of Contents

1 - About

The scope of a cookie name is a calculated property defined by the concatenation of

If the request URL matches the scope (ie domain and path expression), the user agent (browser) will add the cookies in the Cookies header to the request returning it to the server (if the other cookie property (such as expiration date, http only,..) are also valid)

You can have the same name below differents scope.

Below you can see that their is 2 cookie named visits below two differents scopes.

3 - Example

For instance:

  • A cookie that should be returned to every path and every subdomain of example.com would be set by the server with the following set-cookie response header

Set-Cookie: key=value; Path=/; Domain=example.com



Cookies: key=value

4 - Properties

4.1 - Domain

The domain attribute determines the scope and determine which host (port excluded) are allowed to receive the cookie.

The scope rules are applied top down (ie applied to the domain and all subdomain)

  • if the value of the Domain attribute is:
    • example.com
  • the user agent (browser) will include the cookie to request on the domain and all subdomain. ie
    • example.com,
    • www.example.com,
    • and www.corp.example.com

If the domain property of the cookie is:

More … see HTTP - Domain value of a Cookie

4.2 - Path

The path attribute is a scope attribute and is matched against the request URL path where:

  • / means all paths including the root

The default value of the path is the parent of the last name:

  • If the URL of the request is https://example.com/foo/bar
  • the default scope/cookie path is /foo

If several cookies shares the same name with different path, a list of values is returned ordered by scope order. For instance, suppose that

  • there is two cookies with the same name: visits
  • their respective path are:
    • /
    • /cookie
  • their respective value are:
    • 3
    • 2
  • a call to https://example.com/cookie
  • will result in the following cookie header:

Cookie: visits=2; visits=3
As seen in the Cookie value, there is no way to know the path of the values.

Data (State)
Data (State)
DataBase
Data Processing
Data Quality
Data Structure
Data Type
Data Warehouse
Data Visualization
Data Partition
Data Persistence
Data Concurrency

Data Science
Data Analysis
Statistics
Data Science
Linear Algebra Mathematics
Trigonometry

Modeling
Process
Logical Data Modeling
Relational Modeling
Dimensional Modeling
Automata

Data Type
Number
Time
Text
Collection
Relation (Table)
Cube
Tree
Key/Value
Graph
Spatial
Color
Log

Measure Levels
Order
Nominal
Discrete
Distance
Ratio

Code
Compiler
Lexical Parser
Grammar
Function
Testing
Debugging
Shipping
Data Type
Versioning
Design Pattern

Infrastructure
Operating System
Cryptography
Security
File System
Network
Process (Thread)
Computer
PerfCounter
Infra As Code

Marketing
Advertising
Analytics
Email

Web
Html
Dom
Http
Url
Css
Javascript
Selector
Browser
Web Services
OAuth

Contact
[email protected]
Privacy Policy
Status

Powered by ComboStrap