Skip to Content
Oct 13, 2014 at 04:20 AM

Serving content from HCP without setting session cookies



I'd really like to be able to expose some content from my HCP account to the internet but not have HCP set cookies on it when it is requested.

Even using non-authenticated content, HCP still seems to set a cookie - eg:

  1. Remote Address:
  2. Request URL:
  3. Request Method:GET
  4. Status Code:200 OK
  5. Request Headersview source
    1. Accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
    2. Accept-Encoding:gzip,deflate,sdch
    3. Accept-Language:en-US,en;q=0.8,en-AU;q=0.6
    4. Connection:keep-alive
    6. User-Agent:Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.101 Safari/537.36
  6. Response Headersview source
    1. Accept-Ranges:bytes
    2. Content-Length:4540
    3. Content-Type:image/png
    4. Date:Mon, 13 Oct 2014 04:11:31 GMT
    5. ETag:W/"4540-1413113585000"
    6. Last-Modified:Sun, 12 Oct 2014 11:33:05 GMT
    7. Server:SAP
    8.!Wjonifb/bNadplktoQj1pi3WDlnePHanj1YCK4n3KwsTwaQbnLRcwBKQKxplkcfPBA4VMrdB5929Ag==; path=/; httponly; secure

Is there any way to stop this behaviour? Problem is Safari refusing to surface any content from HCP if user has not authenticated/connected to HCP due to 3rd party cookie rules.

Any suggestions much appreciated!