cookies

nothing

httponly

secure

httponly + secure