[Webkit-unassigned] [Bug 232088] Unable to set secure+httpOnly cookie for localhost in Safari from Node JS
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jan 25 14:37:32 PST 2024
https://bugs.webkit.org/show_bug.cgi?id=232088
Julian <julian.fortune at amplica.io> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |julian.fortune at amplica.io
--- Comment #9 from Julian <julian.fortune at amplica.io> ---
(In reply to John Wilander from comment #6)
Thank you for this extremely helpful clarification:
> Are you using a self-signed certificate for localhost and serving all of its
> resources over https? Secure cookies are not accepted from non-secure pages.
This issue tripped up my team for several hours today, and although the behavior makes sense, but it would be helpful to have more documentation.
I would also like to note that chromium and gecko engines have different behavior and accept the cookie.
Thanks, Julian
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240125/62db81cb/attachment.htm>
More information about the webkit-unassigned
mailing list