Hi MDPF52,
from my perspective it can just be overwritten but not be deleted (here is a sample):
when RULE_INIT {
set static::remove_cookie 1
}
when HTTP_RESPONSE {
if { $static::remove_cookie == 1 } {
if { [HTTP::cookie exists APPSESSIONID] } {
HTTP::cookie remove APPSESSIONID
}
HTTP::cookie insert name APPSESSIONID value "loggedout" path "/" domain "cookietest.lb-net.bit" version 1
}
}
Maybe this helps a bit. So if you test new incoming requests for the cookie and treat them according to your policies.
Make sure to lookup your broswer cache for other domain or path specific cookie from your site. Maybe they need to be overwritten specifically.
Thanks, Stephan