Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow response cookie sameSite value "none" #3958

Closed
misschak opened this issue May 15, 2019 · 3 comments
Closed

Allow response cookie sameSite value "none" #3958

misschak opened this issue May 15, 2019 · 3 comments
Assignees
@dougwilson
Labels
deps enhancement
Milestone
4.17

Comments

@misschak
Copy link

https://web.dev/samesite-cookies-explained

Finally there is the option of not specifying the value which has previously been the way of implicitly stating that you want the cookie to be sent in all contexts. In the latest draft of RFC6265bis this is being made explicit by introducing a new value of SameSite=None. This means you can use None to clearly communicate you intentionally want the cookie sent in a third-party context.

Currently setting sameSite to none will produce
TypeError: option sameSite is invalid
@dougwilson
Copy link
Contributor

This is the PR: jshttp/cookie#89

@misschak
Copy link
Author

Thanks much!

@dougwilson dougwilson mentioned this issue May 16, 2019
Merged
23 tasks
@dougwilson dougwilson added this to the 4.17 milestone May 16, 2019
@dougwilson dougwilson self-assigned this May 16, 2019
@dougwilson
Copy link
Contributor

No problem! The PR has been merged and released upstream. I have included the updated dependency in the 4.17 branch, due for imminent release. #3778

@adithya321 adithya321 mentioned this issue Feb 19, 2020
Closed
@matjazonline matjazonline mentioned this issue Apr 2, 2020
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dougwilson dougwilson

Labels
deps enhancement
Projects
None yet
Milestone
4.17
Development

No branches or pull requests
2 participants
@dougwilson @misschak