Bug 8192 - Cookies will have different "SameSite" setting depending on the browser
Summary: Cookies will have different "SameSite" setting depending on the browser
Status: NEW
Alias: None
Product: ThinLinc
Classification: Unclassified
Component: Other (show other bugs)
Version: trunk
Hardware: PC Unknown
: P2 Normal
Target Milestone: LowPrio
Assignee: Bugzilla mail exporter
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-07-13 13:09 CEST by Pierre Ossman
Modified: 2023-08-22 13:26 CEST (History)
0 users

See Also:
Acceptance Criteria:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Pierre Ossman cendio 2023-07-13 13:09:52 CEST 
The browsers are in a process of changing the default cookie security behaviour in accordance with this document:

https://mikewest.github.io/cookie-incrementalism/draft-west-cookie-incrementalism.html

That means that right now you get some variation in behaviour (see bug 8191) depending on which browser you use. You also get complaints from the browsers that no explicit "SameSite" attribute has been set.

We should probably be more explicit here so that we get a predictable behaviour.
Note You need to log in before you can comment on or make changes to this bug.