[Webkit-unassigned] [Bug 208049] Javascript can't access a SameSite=Strict cookie after page is loaded after a redirect from a third party site
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Feb 22 18:19:45 PST 2020
https://bugs.webkit.org/show_bug.cgi?id=208049
--- Comment #2 from John Wilander <wilander at apple.com> ---
Thanks for filing!
Some screening questions:
1. Is this for Safari? WebKit supports multiple HTTP backends where cookies are implemented.
2. If for Safari, which OS and which version?
3. Has this worked before, i.e. is it a regression?
4. Do you see different behavior in other browsers?
5. I see both spotify.com and spotify.net in the HTTP metadata you provide. Is the .net domain ever loaded or just there for things that might happen after the CSRF token is read through document.cookie?
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200223/5b7db288/attachment.htm>
More information about the webkit-unassigned
mailing list