I’m using OWIN / OAuth with OpenId Connect authentication (Microsoft.Owin.Security.OpenIdConnect) in a C# ASP MVC web app. The SSO login with Microsoft account basically works, but from time to time I’m getting an error page on the browser that says Bad Request - Request Too Long.
In my web project setting to turn on httpOnlyCookies is not there. It is false by default. Also there is no place in code where cookie is being set to HttpOnly. However, when I browse to the site I can see that ASP.NET_Session cookie is being passed as HttpOnly. How is it set to HttpOnly?
Can I change the FormsAuthentication cookie name?
While working with ASP.Net Forms Authentication I came across the .ASPXAUTH cookie. I have a couple questions:
Authentication cookies seem to timeout after a short period of time (a day or so). I am using Forms Authentication and have the timeout=”10080″ with slidingExpiration=”false” in the web.config. With that setting, the cookie should expire roughly 7 days after the user is successfully authenticated.
I know how to write/create cookies in JavaScript…………………………………………………
I am creating the cookie using the code below, How to read the txtusername value in another page and how to delete the cookie when I click sign out(code for sign out). I am new to programming please help.
I will try to explain my situation and what I wanted to do. There is not any difficult and rare situation, but I can’t find any relative questions or articles in internet.
I have a Reset Password page: 
If i use Response.Cookies["test"].Value ="Hi"; where are cookie stored in system?