Directive Reference

testcookie_domain

The `testcookie_domain` directive specifies the domain associated with the challenge response cookie used in the NGINX testcookie robot mitigation module.

NGINX testcookie robot mitigation module · httpserverlocation
Syntaxtestcookie_domain domain;
Defaultnone
Contexthttp, server, location
Arguments1

Description

The testcookie_domain directive is part of the NGINX testcookie robot mitigation module, designed to challenge potential automated bots by utilizing a cookie-based system. By setting this directive, administrators can define the domain for the challenge cookie, which affects how and when browsers accept the cookie. If not explicitly set, the default behavior is to assign the cookie to the domain determined by the browser, allowing for a more flexible cookie handling based on existing domain configurations.

Config Example

http {
    testcookie on;
    testcookie_domain example.com;
}

Ensure that the domain specified is correct and includes the appropriate subdomains if necessary; otherwise, cookies may not be set properly.

Mixing this directive with other cookie directives may create unexpected behavior if the domain does not match the server's hostname.

Related Directives

testcookie_nametestcookie_pathtestcookie_samesitetestcookie_expires
← Back to all directives