Invalid cookie expiration warnings

bleis · December 15, 2022, 12:23am

Is there a specific setting needed to get the expires attribute set correctly? We have a script that is directly calling the java okta-aws-cli-3.0.0.jar and its generating the following cookie header errors

Push Factor Authentication
Dec 15, 2022 12:00:30 AM org.apache.http.client.protocol.ResponseProcessCookies processCookies
WARNING: Invalid cookie header: “set-cookie: Okta_Verify_Autopush_-374149684=false;Version=1;Path=/;Max-Age=31536000;Secure;Expires=Fri, 15 Dec 2023 00:00:30 GMT;HttpOnly”. Invalid ‘expires’ attribute: Fri, 15 Dec 2023 00:00:30 GMT

I suspect that’s due to the apache httpclient setup being used internally i.e. it should be doing this

HttpClient httpClient = HttpClients.custom()
        .setDefaultRequestConfig(RequestConfig.custom()
                .setCookieSpec(CookieSpecs.STANDARD).build())
        .build();

But I also have a docker container version of all this that doesn’t seem to have the issue

erik · December 15, 2022, 12:45am

Hello,

You might also trying asking this at,

Also Okta has a new officially supported AWS CLI integration which you might want to check,

Thank You,

system · February 12, 2024, 10:34pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.