Page History

...

RFC 2617	"HTTP Authentication: Basic and Digest Access Authentication" It covers BASIC and DIGEST authentication methods It was updated by RFC 7235.
RFC 6265	"HTTP State Management Mechanism" The specification about cookies. Implemented by org.apache.tomcat.util.http.Rfc6265CookieProcessor that is available since Tomcat 8.0.15 and is default with Tomcat 8.5.0 onwards. See also "Cookies" page in "Development Issues".

Obsolete specifications: RFC2109, RFC 2965. |

AJP

The AJP protocol specification lives on the Apache Tomcat Connector web site.

...