Faq Why the Joomla! session cookie is shown in the browser console?
Why the Joomla! session cookie is shown in the browser console?

If you look into the Firefox or Chrome inspector tools, the Joomla! session cookie will still be shown always or at random page load, this is normal and expected. Keep in mind that the Joomla! session cookie is a strictly technical cookie based on an encrypted hash that does not even need to be blocked to be compliant with ePR and GDPR.


The Joomla session cookie is blocked server-side and client-side, so despite the fact it's still present and randomly showed in the client browser console when page is reloaded, it's blocked by PHP before its usage and deleted by javascript after the page load. To verify that the Joomla session cookie is correctly blocked, you can try to perform a login and if the cookie is blocked the login must fail, moreover you can try to execute the command 'console.log(document.cookie)' or simply write 'document.cookie' in the browser console and the result must show an empty cookie string "".