Greetings. We have taking Jupyter Notebook and wrapped in our own framework for our customers. Additionally, security is extremely important to us. One issue raised is that the cookie value that gets set (due to token authentication) contains the name of the back-end server that is running Jupyter Notebooks (in Docker containers). For example below.
Is there a way to change or mask this information but still have Jupyter function correctly? Why does the server name have to be in there at all?
HTTP/2 200 OK
cache-control: private
content-type: application/json
expires: Thu, 01 Jan 1970 00:00:00 GMT
etag: "adcc78339a0b608adc584009444d704e2415b0b0"
server: Microsoft-IIS/10.0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' rh62portal2.mycompany.com; default-src 'none'
set-cookie: username-DEV0015395-MYCOMPANY-COM-30003="2|1:0|10:1604356561|34:username-DEV0015395-MYCOMPANY-COM-30003|44:ZWU1YWZhMGNhZmMyNDVlNTk4NzJiMzQ4MjliZjZkNzM=|23cf352532ce60e4abc4e6bccd4951a00c0438d01b7eb24aa96d67932466e177"; expires=Wed, 02 Dec 2020 22:36:01 GMT; HttpOnly; Path=/server/notebooks/8a5de04b8cd14dab96afee2b8c9f4449/; Secure
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Mon, 02 Nov 2020 22:36:01 GMT
content-length: 497
X-Firefox-Spdy: h2