Implement HttpOnly & Secure flag in Tomcat

• Log in to Tomcat server
• Go to Tomcat installation path and then conf folder
• Open context.xml using any editor and update Context section as below 

  • useHttpOnly="true"

• Next, adding a secure flag 
• Open server.xml and add below in Connector port section

  • secure="true"

• Restart Tomcat server to test the application

Note: Please stop the Jaspersoft services before making the above changes 

Once the changes are made now the cookies will show up as http only and secure in browser developer's console.