public void setCookie(HttpServletRequest request, HttpServletResponse response, CookieInfo info) { String cookieValue = info.toEncryptedString(); long maxAgeMillis = info.getExpires().getTime() - new Date().getTime(); long maxAge = (maxAgeMillis < 0) ? -1 : maxAgeMillis / 1000L; HttpCookie cookie = new HttpCookie(LID_COOKIE_NAME) .setValue(cookieValue) .setMaxAge((int) maxAge) .setHttpOnly(httpOnly); cookie.saveTo(request, response); }