The present concept is addressed to developers who want to learn more about Intershop's cookie content.
In order to fulfill the privacy and data security requirements of our customers, all cookie configurations can be adapted to the need of the customer.
The following table contains all used cookies of the standard product. Please keep in mind that the customization of Intershop Commerce Management can extend this list. Additionally, optional features like Google Tag Manager can introduce additional cookies, these are not part of this document.
Name | Cookie | Content | Description | No User-Related Content | Session | HostOnly | ReadOnly | Same-Site | Secure | Optional |
---|---|---|---|---|---|---|---|---|---|---|
Session Cookie | sid | hash |
| |||||||
Authentication Cookie | SecureSessionID-<site-id> | user ref |
| Contains reference to user Does not contain login/password/name of user/addresses | ||||||
Personalization Cookie | pgid-<site-name> | hash |
| Hash does not reference any user or user/customer group | ||||||
Basket Cookie | cc-<cart-id> | cart ref |
| Contains reference to cart Does not contain login/password/name of user/addresses | ||||||
A/B-Test Cookie | <configured-value>-<ab-test-id> | ab-test-group ref |
| Mandatory for feature | ||||||
Recently Viewed Items | rvdata-<domain?>-products | product refs | Mandatory for feature | |||||||
REST API Bridge | apiToken | cart or user ref |
| Contains reference to user Contains reference to cart | Mandatory for feature | |||||
Display Switch | cookie_test | nothing |
| Part of demo template Set CookiesDisabledOverlay.isml | ||||||
OpenID Connect State | oidc_state | actual oidc state, organization name, identity provider id |
| Contains reference to user's organization Does not contain login/password/name of user/addresses | Mandatory for feature |
The table contains the default values for cookies, see Guide - Secure URLs Only to use secure session and pgid cookies.
Cookies are intended to reference data in the application (database). The access to the database is limited.
Cookie Stored Reference to Object | Referenceable Data in Database |
---|---|
user | shipping, billing addresses, login, orders, customer |
cart | shipping, billing addresses |
a/b test group | list of users/customers |