[Webkit-unassigned] [Bug 219426] What is the point of specifying a cookie's maximum age when ITP disregards it anyway?
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Dec 2 19:45:44 PST 2020
https://bugs.webkit.org/show_bug.cgi?id=219426
--- Comment #1 from John Wilander <wilander at apple.com> ---
Hi! Thanks for filing.
First, only persistent cookies set through document.cookie and in CNAME cloaked HTTP responses get their expiry capped.
Second, user agents are allowed to block, delete, and expire cookies when they want. User agents act on behalf of the user, not on behalf of websites.
Finally, cookies set through document.cookie or in CNAME cloaked HTTP responses with an expiry shorter than 7 days will get the expiry stated by the website.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20201203/ea9ec191/attachment-0001.htm>
More information about the webkit-unassigned
mailing list