__RequestVerificationToken

ASP.NET Mechanism designed to prevent possible Cross Site Request Forgery attacks

.AspNet.Cookies

Used by the ASP.NET framework to handle cookies.

EnlightenDefaultTaskView

Coruson User default Task View Toggle

EnlightenShowAnalysisMissingRecordsInfo

Coruson Grid Showing Banner Toggle

EnlightenHomeGettingStarted

Coruson Getting Started Section Display Toggle

EnlightenUnreadNotification

Coruson Notification

_ga

[Google Analytics] Used to distinguish users.

_gid

[Google Analytics] Used to distinguish users.

fs_uid

Full Story capturing script, sets a single first-party cookie containing end-user’s fs_uid when capturing their activities on the site.

idsrv.xsrf

Identity Server Mechanism designed to prevent possible Cross Site Request Forgery attacks

idsvr.clients

Client Id connecting to Identity Server

idsvr.session

Identity Sever session uses for OpenID Connect Session.

idsvr.username

Username connecting to Identity Server

Kentor.oAvwGjFbH1Ggogv9oHxqjQ7N

Consumed by SAML2 Protocol library Kentor.AuthServices.Owin

SignInMessage.403d3fde790c4d2eff86b75d8b3c2e83

The contextual information passed to the authorize endpoint

SignOutMessage.5bb1bbf3931c4c4b9af09b96ae0f1b86

The contextual information passed to the authorize endpoint

KC_RESTART

Authentication and SSO (This cookie to track that if there is a client timeout, then the authentication session can be restarted.)

AUTH_SESSION_ID_LEGACY

Authentication and SSO (Legacy sticky session cookie. For backwards compatibility.)

AUTH_SESSION_ID

Authentication and SSO (Sticky session cookie.)

KEYCLOAK_SESSION

"Authentication and SSO (Keycloak's identity cookie. To track with user that is currently logged in with Keycloak in the browser. Used for Single Sign On (SSO).)"

KEYCLOAK_SESSION_LEGACY

"Authentication and SSO (Legacy version of KEYCLOAK_SESSION. For backwards compatibility.)"

KEYCLOAK_IDENTITY

Authentication and SSO (Used for auth login)

KEYCLOAK_IDENTITY_LEGACY

"Authentication and SSO (Legacy version of KEYCLOAK_IDENTITY. For backwards compatibility.)"

fs_uid

Full Story (Identify the visitor in a third-party (FullStory) service)

IDG_HRD_3dcad492-a44d-4026-a662-cac8a59e93d2

Authentication and SSO (Ideagen Home Realm Discovery Cookie. To streamline user authentication flow between tenants.)

fs_uid

Identify the visitor in a third-party (FullStory) service

AUTH_SESSION_ID

Authentication and SSO (Sticky session cookie.)

AUTH_SESSION_ID_LEGACY

Authentication and SSO (Legacy sticky session cookie. For backwards compatibility.)

KC_RESTART

Authentication and SSO (This cookie to track that if there is a client timeout, then the authentication session can be restarted.)

IDG_HRD_3581fb69-a0ea-4e93-a2b7-31d86d4e66d9

Authentication and SSO (Ideagen Home Realm Discovery Cookie. To streamline user authentication flow between tenants.)

fs_uid

Full Story

x-ms-cpim-trans

"Used for tracking the transactions (number of authentication requests to Azure AD B2C) and the current transaction."

x-ms-cpim-cache|ykzjrklogecki7b5yfnkzw_0

Used for maintaining the request state.

x-ms-cpim-csrf

"Cross-Site Request Forgery token used for CRSF protection. For more information, read the Cross-Site request forgery token section."

fs_uid

Identify the visitor in a third-party (FullStory) service

'EQMS'

Authentication

.AspNetCore.Antiforgery

A controller attribute which can be decorated over a controller action that is suceptible to CSRF attacks.

__cf_bm [x3]

This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.

__cfruid

This cookie is a part of the services provided by Cloudflare - Including load-balancing, deliverance of website content and serving DNS connection for website operators.

_GRECAPTCHA

This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.

CONSENT [x2]

Used to detect if the visitor has accepted the marketing category in the cookie banner. This cookie is necessary for GDPR-compliance of the website.

CookieConsent

Stores the user's cookie consent state for the current domain

embed/v3/counters.gif [x2]

Used to implement forms on the website.

loglevel

Collects data on visitor interaction with the website's video-content - This data is used to make the website's video-content more relevant towards the visitor.

rc::a

This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.

rc::b

This cookie is used to distinguish between humans and bots.

rc::c

This cookie is used to distinguish between humans and bots.

undefined

Collects data on visitor interaction with the website's video-content - This data is used to make the website's video-content more relevant towards the visitor.

wistia

Used by the website to track the visitor's use of video-content - The cookie roots from Wistia, which provides video-software to websites.

wistia-video-progress-#

Contains a timestamp for the website’s video-content. This allows the user to resume watching without having to start over, if the user leaves the video or website.

_clck

Collects data on the user’s navigation and behavior on the website. This is used to compile statistical reports and heatmaps for the website owner.

_clsk

Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator.

_cltk

Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator.

_ga

Registers a unique ID that is used to generate statistical data on how the visitor uses the website.

_ga_#

Used by Google Analytics to collect data on the number of times a user has visited the website as well as dates for the first and most recent visit.

_gat

Used by Google Analytics to throttle request rate

_gid

Registers a unique ID that is used to generate statistical data on how the visitor uses the website.

_uetvid

Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

_uetvid_exp

Contains the expiry-date for the cookie with corresponding name.

c.gif

Collects data on the user’s navigation and behavior on the website. This is used to compile statistical reports and heatmaps for the website owner.

CLID

Collects data on the user’s navigation and behavior on the website. This is used to compile statistical reports and heatmaps for the website owner.

vuid

Collects data on the user's visits to the website, such as which pages have been read.

__hssrc

Collects statistical data related to the user's website visits, such as the number of visits, average time spent on the website and what pages have been loaded. The purpose is to segment the website's users according to factors such as demographics and geographical location, in order to enable media and marketing agencies to structure and understand their target groups to enable customised online advertising.

__hstc

Collects statistical data related to the user's website visits, such as the number of visits, average time spent on the website and what pages have been loaded. The purpose is to segment the website's users according to factors such as demographics and geographical location, in order to enable media and marketing agencies to structure and understand their target groups to enable customised online advertising.

__ptq.gif

Sends data to the marketing platform Hubspot about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels.

_fbp

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.

_gcl_au

Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

_uetsid

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.

_uetsid_exp

Contains the expiry-date for the cookie with corresponding name.

ads/ga-audiences

Used by Google AdWords to re-engage visitors that are likely to convert to customers based on the visitor's online behaviour across websites.

ANONCHK

Registers data on visitors from multiple visits and on multiple websites. This information is used to measure the efficiency of advertisement on websites.

hubspotutk

Keeps track of a visitor's identity. This cookie is passed to the marketing platform HubSpot on form submission and used when de-duplicating contacts.

IDE

Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

MUID [x2]

Used widely by Microsoft as a unique user ID. The cookie enables user tracking by synchronising the ID across many Microsoft domains.

pagead/1p-user-list/#

Tracks if the user has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral-fees between websites.

pagead/landing [x2]

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.

SM

Registers a unique ID that identifies the user's device during return visits across websites that use the same ad network. The ID is used to allow targeted ads.

SRM_B

Tracks the user’s interaction with the website’s search-bar-function. This data can be used to present the user with relevant products or services.

test_cookie

Used to check if the user's browser supports cookies.

tr

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.

VISITOR_INFO1_LIVE

Tries to estimate the users' bandwidth on pages with integrated YouTube videos.

www-claim-v2

Used for sharing content onto the social platform Instagram - This functionality is used for gathering information on visitor preferences for marketing purposes.

YSC

Registers a unique ID to keep statistics of what videos from YouTube the user has seen.

ytidb::LAST_RESULT_ENTRY_KEY

Stores the user's video player preferences using embedded YouTube video

yt-remote-cast-available

Stores the user's video player preferences using embedded YouTube video

yt-remote-cast-installed

Stores the user's video player preferences using embedded YouTube video

yt-remote-connected-devices

Stores the user's video player preferences using embedded YouTube video

yt-remote-device-id

Stores the user's video player preferences using embedded YouTube video

yt-remote-fast-check-period

Stores the user's video player preferences using embedded YouTube video

yt-remote-session-app

Stores the user's video player preferences using embedded YouTube video

yt-remote-session-name

Stores the user's video player preferences using embedded YouTube video

_clck

Collects data on the user’s navigation and behavior on the website

ajs_anonymous_id

Identity tracking & statistics

_hjSessionUser_287575

Store a unique user ID

_uetvid

Marketing / tracking

hubspotutk

Tracking visitor identity used for deduplication of contacts

__hstc

Tracking visitors

_ga

Registers a unique ID that is used to generate statistical data on how the visitor uses the website.

km_ai

Used to collect data on how visitors use the site

km_lv

Used to collect data on how visitors use the site

ajs_group_id

Identity tracking & statistics

ajs_anonymous_id

Identity tracking & statistics

last_activity

Activity tracking

.AspNet.ApplicationCookie 

Authentication 

QSPXjf0AhKHUsRaut4 

Session cookie containing users encrypted username 

tasksChartFromDate 

Store date for filtering charts 

tasksChartToDate 

Store date for filtering charts

PHPSESSID 

The identifier for your current session in PHP. 

MedFORCE.Technolgies

User authentication

.MFSSetup

Tracks the user’s logged in username

ASP.NET_SessionId

Tracks the user’s session state

.MFSAUTH

Tracks the user’s logged in state

__RequestVerificationToken_L01B0

Used to prevent cross origin forgery in login form

.ASPXAUTH

Tracks the user’s logged in state

.ASPXROLES

Tracks the user’s roles

mico-mism-id

Tracks the user’s session state

ai_session

Used to track user’s session for Application Insights

ai_user

Used to track user for Application Insights

.MFSDC

Tracks the user’s logged in state

ASP.NET_SessionId

Tracks the user’s session state

__RequestVerificationToken_L0xBUEFncg2

Used to prevent cross origin forgery in login form

ASP.NET_SessionId

Tracks the user’s session state

.AspNet.ApplicationCookie

Tracks the user’s logged in state

NID

Google: user statistics

_ga_*

Google analytics: user statistics

Facebook Pixel

Facebook/Meta first-party tracking cookie

_cfruid

Zendesk uses cloudflare to identify trusted traffic

ASP.NET_SessionId

General purpose platform session cookie, used by sites written with Miscrosoft .NET based technologies. Used to maintain an anonymised user session by the server.

DirectLink

Used when accessing a record from a link in an email and deleted once the user has been authorised

_AntiXsrfToken

Used to prevent Cross-Site Request Forgery attacks

SignInMessage

 Selected database value and web client url redirect value

idsrv.partial

 Used by Identity Server to store authentication value like claims, subject, name, destination

OpenIdConnect.nonce

 Microsoft AspNet Authentication OpenIdConnect

__RequestVerificationToken

 Identity Server anti-forgery cookie

.ASPXAUTH

 Used to determine if a user is authenticated

.AspNet.Cookies

  ASP.NET Cookies value

sub

 Database name and login user profile info value

access_token

 user access token

ASP.NET_SessionId

 ASP.NET session id

RememberLogin

Remember login checkbox value

LastUserName

Login username value 

AUTH

 ASP.NET authorization cookie

LastSelectedDBIndex

Database selection index value

ASP.NET_SessionId

ASP.NET session id

RememberLogin

 Remember login checkbox value

LastUserName

Login username value 

AUTH

 ASP.NET authorization cookie

LastSelectedDBIndex

 Database selection index value

ASP.NET_SessionId

 ASP.NET session id

.ASPXAuth_QP1

  Used to determine if a user is authenticated

AWSALB

AWS load balancer

AWSABCORS

AWS load balancer

JSESSIONID

session ID login/logout

loginDomain

login

lawTabs

law module

respUser

Risk Module - Assessment Job Hazard Task form

showTooltip

showing tooltips throughout application

site

used throughout application

__RequestVerificationToken

This is an anti-forgery cookie set by web applications built using ASP.NET MVC technologies. It is designed to stop unauthorised posting of content to a website, known as Cross-Site Request Forgery. It holds no information about the user and is destroyed on closing the browser.

ASP.NET_SessionId

General purpose platform session cookie, used by sites written with Miscrosoft .NET based technologies. Used to maintain an anonymised user session by the server.

.ASPXANONYMOUS

Created by ASP.Net. This cookie configures anonymous identification for application authorization. This is required to identify entities that are not authenticated when authorization is required. (taken from the Microsoft Website).

.AspNet.Cookies

.net Standard authentication cookie to say a user is authenticated on the site

fs_uid - Fullstory

_AntiXsrfToken

ASP.Net:

This cookie is a security cookie used to prevent cross-scripting attacks – this cookie is anonymous

QTUSRSESS-VIS

This is used to track some unauthenticated user preferences.

QTUSRSESS

This is used to track some authenticated user preferences.

recent-items

Used to store the pages the user has recently viewed, which are presented back to the user for easy access

.ASPXAUTH

Used to track the user's logged in state

expanded-inbox-items

Used to store the section collapse/expand settings for the user's inbox so they persist through app navigation

SAML_SessionId

Used to track the user's SAML Single Sign On session

ai_session

Used to track user's session for Azure Application Insights (Usage Data)

ASP.NET_SessionId

Used to track the user's session state

__RequestVerificationToken

This is an anti-forgery token used to prevent CSRF attacks.

ai_user

Used to track user for Azure Application Insights (Usage Data)

QTUSRSLANGPREF

Used to store user's language preference so Qualtrax pages are presented in that preferred language even when user is logged out

PHPSESSID

The PHP Session cookie. Used by the system to identify a user that is logged in

support_pdf

A boolean that indicates whether the client supports native PDF preview

CartId

A numeric identifier for the catalogue cart that is used to link visiting customers with actual users, once they sign in

c_request

A URL, used to satisfy deep-linking requests for returning users

ef_submit_users

A URL, stores the user's preference for a returning URL when creating a user

ef_user

Contains a hash code that is used to implement the optional “remember me” operations for returning users

bypass_skill_test

An integer that stores the user's preference in regards to when a skill-gap test should be taken

MyCoursesPersonalization

Stores the expand/collapse state of the “my courses" list for a user

cookieTableRows

These cookies are set by the client (not the server), and hold information on the user’s system appearance settings

collapsed

navbar_hidden

side_hidden

theme_page_id

announcement_

A boolean that defines whether a user has selected to hide an announcement. Set by the client.

cookie_old_browser_main

A boolean that is used to display a message to the user suggesting they update their browser version, if an old, with limited support browser version is detected

SimpleSAMLAuthToken

These cookies are used as part of the system’s SAML authentication process that enables users to remain logged in and allows the system to track unique login sessions

SimpleSAMLSessionID

selected_language

Users are allowed to select a language prior to their login to the system. Set by the client, this cookie holds that language’s information

_AntiXsrfToken

An anti forgery token preventing a CSRF attack.

ASP.NET_SessionID

Identifies the current user session on the server.

TngAuthentication

Management of current user's session.

viewer_uid

Manages Pentana Audit's authentication process.

MKInsight.Online.RRAM2

Identifies the current user session on the server.

MKInsight.Online.ActionTracking

Identifies the current user session on the server.

mkapp

Identifies the current user session on the server.

mkarapp

Identifies the current user session on the server.

mkmi

Identifies the current user session on the server.

mkac

Identifies the current user session on the server.

mkappc

Identifies the current user session on the server.

mka112

Stores high level account name. If it is not present the user must input account name every time before they input their username and password.

APPS_Lang

Manages user language selection for online questionnaires.

EXT_REC_SORTEXP

Stores online recommendations sort direction and grouping key.

EXT_REC_SORTDIR

Stores online recommendations sort direction and grouping key.

EXT_REC_GROUPKEY

Stores online recommendations sort direction and grouping key.

PLAY_SESSION

Manages the users session

PLAY_ERRORS

Used to communicate server errors

PLAY_FLASH

Used to communicate other server messages

ssoRedirect

Remembers the intended destination of a user using SSO

justAuthenticated

Lets FreshSuccess know that the current user has recently logged in

pidatafilterX

Stores users filter preferences

showInactiveRisks

Stores users filter preferences

showInactiveActions

Stores users filter preferences

scorecardX

Stores users tree node expansion preferences

springEagerTreeX

Stores users tree node expansion preferences

clearPagination

Used to communicate intent to reset pagination controls.

goto-feedback-count-type

Stores users goto menu feedback count settings.

flag-accessibility

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Enable the Accessibility tester.

flag-audits

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Audits Module Preview

flag-disable-i18n

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Show i18n/customer string keys instead of values.

flag-idletimeout

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Idle timeout

flag-imports

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Imports Prototype

flag-short-page-size

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Makes pages in lists short

flag-wide-boy

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Make all pages wider with CSS

flag-search

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Global searching

flag-svg

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Use SVGs for some images such as status icons.

flag-tester_utils

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Are you a tester? Or just testing? These things are for you!

flag-xify-i18n

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Show i18n/customer string values with additional X's.

flag-spring-action-query

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Use the Spring back end for action queries

flag-actionsAdmin

Feature Flags is only visible to Covalent Admin, or anyone on a supported platform, Can you see the Actions Settings link in the site setup section?

showInactiveRecommendations

show inactive/active for recommendation 

showInactiveAuditFiles

show inactive/active for audit files 

JROUTE

GlassFish Load-balancer plugin always add a header proxy-jroute on request being send from load-balancer plugin to server. JROUTE cookie need to be stamped in two cases.

METRO_KEY

For glassfish

JREPLICA

For glassfish

fs_uid

Full Story analytics and autocapture

OptanonConsent

Full Story analytics and autocapture

OptanonAlertBoxClosed

Full Story analytics and autocapture

_ga

Full Story analytics and autocapture

_ga_D269HHYBGZ

Full Story analytics and autocapture

_gid

Full Story analytics and autocapture

_mkto_trk

Full Story analytics and autocapture

optimizelyEndUserId

Full Story analytics and autocapture

_ga_088YCF29VH

Full Story analytics and autocapture

_gcl_au

Full Story analytics and autocapture

_fbp

Full Story analytics and autocapture

JSESSIONID

used for session management in J2EE web applications for HTTP protocol

__utmz

Full Story analytics and autocapture

__utma

Full Story analytics and autocapture

.TARA.AUTH

ASP.NET Authentication

.TARA

ASP.NET SessionId

__RequestVerificationToken

ASP.NET Anti forgery token (prevent XSRF)

__AntiXsrfToken

PleaseReview Anti forgery token (prevent XSRF)

TARA.REMEMBER

for "Remember me" login feature

TARA.SYSCON

PleaseReview system connector

TARA.CULTURE

Culture/Language

.AspNet.ApplicationCookie

Management of current user's session.

__RequestVerificationToken

An anti forgery token preventing a CSRF attack.

ASP.NET_SessionId

Identifies the current user session on the server.

AutoLogin

Manages Disclose's authentication process.

Culturecode

Tracks the user's language settings

SkipBrowserCheck

Manages Disclose's authentication process.

TenantUID

Identify’s a user’s client

OptanonConsent

" Full Story analytics and autocapture"

fs_uid

" Full Story analytics and autocapture"

auth_token

Authentication token

login_expiry

Login session expire length in minutes

NewDashboard

Show huddles new dashboard UI

ajs_user_id

Segment analytics

ajs_group_id

Segment analytics

ajs_anonymous_id

Segment analytics

auth_idp

Single sign-on authentication

sectok

XSRF token checker