Add the HttpOnly to all cookies in SupportCenter

Add the HttpOnly to all cookies in SupportCenter

I'm going through and making sure that any holes are plugged in our SUpportCenter server and found that we are vulnerable to Missing HttpOnly Flag From Cookie. Guides online reference adding a line to "context.xml". I cannot find this file. So many questions. How have others in the community fixed this?

                New to ADSelfService Plus?