Talk:HTTP cookie
| This is the talk page for discussing improvements to the HTTP cookie article. This is not a forum for general discussion of the article's subject. |
Article policies
|
| Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL |
Archives: 1, 2, 3, 4Auto-archiving period: 6 months  |
 | This article is rated C-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
.svg){kind=icon}
 | HTTP cookie is a former featured article. Please see the links under Article milestones below for its original nomination page (for older articles, check the nomination archive) and why it was removed. | |||||||||||||||||||||
 | This article appeared on Wikipedia's Main Page as Today's featured article on May 8, 2006. | |||||||||||||||||||||
| ||||||||||||||||||||||
 | This article is based on material taken from the Free On-line Dictionary of Computing prior to 1 November 2008 and incorporated under the "relicensing" terms of the GFDL, version 1.3 or later. |
 | This article is substantially duplicated by a piece in an external publication. Since the external publication copied Wikipedia rather than the reverse, please do not flag this article as a copyright violation of the following source:
|
 | On 16 October 2023, it was proposed that this article be moved to Cookies. The result of the discussion was not moved. |
|
|
|
|
This page has archives. Sections older than 180 days may be automatically archived by Lowercase sigmabot III when more than 4 sections are present. | |
 | The content of Cookiejacking was merged into HTTP cookie on February 2019. The former page's history now serves to provide attribution for that content in the latter page, and it must not be deleted as long as the latter page exists. For the discussion at that location, see its talk page. |
The name is a misnomer
[edit]This 'thing' is NOT a nice, sweet piece of biscuit. It is a 'cuckoo-egg'. In short cuckoo and in plural cuckoos. THAT covers and expresses what it IS. Time to call it what it is. — Preceding unsigned comment added by 115.70.29.185 (talk) 07:47, 4 July 2025 (UTC)
"Alternatives to cookies" should be split out into a separate article
[edit]The section "Alternatives to cookies" list various identifiers and cache records stored by the client (and metadata like IP). These things can be used for tracking (one application of cookies), but they don't actually substitute cookies in general. Also, this list is missing a few entries, like:
- - favicon cache:
- - HSTS tracking, see
- - redirect tracking, see
Semi-protected edit request on 3 April 2025
[edit] | This edit request has been answered. Set the |answered= parameter to no to reactivate your request. |
In the Browser fingerprint paragraph, it would be nice to specify that "While the collection of fingerprinting data occurs client-side, the analysis and identification of users based on this data are performed server-side." Please, see the resource here: https://www.researchgate.net/publication/365268626_A_Survey_of_Browser_Fingerprint_Research_and_Application
Also, according to Wikipedia's Guidelines, an example could be done. Here is my attempy: "A well-known application of browser fingerprinting is in online banking systems. This technology enables the creation of unique identifiers for customers' devices during the login phase to detect suspicious activities, such as attempts to access accounts from unrecognized or potentially fraudulent devices."
Thanks! Ate Keurentjes (talk) 08:41, 3 April 2025 (UTC)
Not done: According to the page's protection level you should be able to edit the page yourself. If you seem to be unable to, please reopen the request with further details. twisted. (user | talk | contribs) 14:37, 14 April 2025 (UTC)
"Created by a web server" in the first paragraph may not always be correct
[edit]Current first paragraph: "HTTP cookie [...] is a small block of data created by a web server while a user is browsing a website [...]"
Problem: "created by a web server" may not always be correct and could potentially be misleading, especially if it's in the first paragraph.
As mentioned later down in the article: "Although cookies are usually set by the web server, they can also be set by the client using a scripting language such as JavaScript".
That is, it may be more correct to say something along the lines of "usually created by a web server or browser-side script" ("usually", since we could in theory consider cases like manually adding a cookie to browser's SQLite database, or curl's cookies.txt file, etc.). UkuSormus (talk) 05:38, 10 April 2025 (UTC)
"user's web browser" v.s. other types of client
[edit]Current first paragraph: "HTTP cookie [...] is a small block of data [...] placed on the user's computer or other device by the user's web browser [...]"
The current wording explicitly uses "user's web browser".
Should we consider non-browser clients such as curl to be mentioned in the article? (see, e.g., curl - HTTP cookies)
If so, should we also consider modifying the first paragraph to use something like "by the client, usually the user's web browser", or it could get too abstract for the intro? UkuSormus (talk) 05:40, 10 April 2025 (UTC)
New browser-side CookieStore API
[edit]In the current version of the article, only the document.cookie browser API is mentioned for manipulating cookies. Nowadays, there's also the new CookieStore API (see MDN), supported by Chromium-based browsers and soon in Firefox. UkuSormus (talk) 05:41, 10 April 2025 (UTC)
window.name DOM property
[edit]Window is not a DOM property, window is a host object responsible for reflecting the DOM into programming languages. It has its own standard at https://html.spec.whatwg.org/multipage/nav-history-apis.html#the-window-object 31.182.204.120 (talk) 18:58, 7 May 2025 (UTC)
Semi-protected edit request on 20 July 2025
[edit]disable — Preceding unsigned comment added by 41.13.0.220 (talk) 18:04, 20 July 2025 (UTC)
- C-Class politics articles
- Mid-importance politics articles
- WikiProject Politics articles
- C-Class sociology articles
- High-importance sociology articles
- C-Class law articles
- Mid-importance law articles
- WikiProject Law articles
- C-Class Computing articles
- Mid-importance Computing articles
- All Computing articles
- C-Class Internet articles
- High-importance Internet articles
- WikiProject Internet articles
- C-Class Computer security articles
- High-importance Computer security articles
- C-Class Computer security articles of High-importance
- All Computer security articles
- C-Class Websites articles
- High-importance Websites articles
- C-Class Websites articles of High-importance
- Unknown-importance Computing articles
- All Websites articles
- Etymology Task Force etymologies
- Wikipedia former featured articles
- Featured articles that have appeared on the main page
- Featured articles that have appeared on the main page once
- Old requests for peer review