[Webkit-unassigned] [Bug 208049] Javascript can't access a SameSite=Strict cookie after page is loaded after a redirect from a third party site
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Apr 29 11:01:55 PDT 2021
https://bugs.webkit.org/show_bug.cgi?id=208049
Eric Lawrence (MSFT) <ericlaw at microsoft.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ericlaw at microsoft.com
--- Comment #15 from Eric Lawrence (MSFT) <ericlaw at microsoft.com> ---
I think this is the same as https://bugs.chromium.org/p/chromium/issues/detail?id=925311#c26
The spec has changed and Firefox and Chrome both allow |document.cookie| access to cookies set with SameSite=Strict.
Safari 14.2 Release 123 does not.
Repro:
https://debugtheweb.com/test/cookie/samesite/
Simply set the cookies on both of the first two domains, then flip between them using the links.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210429/59533f42/attachment-0001.htm>
More information about the webkit-unassigned
mailing list