Need MDN landing page that SameSite console warnings can reference
Categories
(Core :: Networking: Cookies, enhancement, P5)
Tracking
()
| Tracking | Status | |
|---|---|---|
| firefox77 | --- | fixed |
People
(Reporter: mconca, Assigned: baku)
References
Details
(Keywords: dev-doc-complete, devrel-needed, Whiteboard: [necko-triaged])
Attachments
(1 file)
We will be logging upcoming changes to the SameSite cookie default behavior in the console. We should have an MDN landing page that the console can direct web developers to that explains the changes and what developers should do about them:
- Cookies without a SameSite attribute will be treated as SameSite=Lax.
- Cookies with SameSite=None must also specify Secure, meaning they require a secure context.
|
Reporter | |
Comment 1•5 years ago
|
||
Chris, not sure if the devrel-needed keyword is active these days, but wanted to put this on your radar.
|
||
Comment 2•5 years ago
|
||
Thanks :mconca! Docs work for this is being tracked at https://github.com/mdn/sprints/issues/2152; I'll follow up with you further about it over mail.
|
||
Updated•5 years ago
|
|
||
Comment 3•5 years ago
|
||
I've started a page here https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite
We can expand it further if needed. Does that work for you, :mconca?
|
|
Reporter | |
Comment 4•5 years ago
|
||
(In reply to Florian Scholz [:fscholz] (MDN) from comment #3)
I've started a page here https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite
We can expand it further if needed. Does that work for you, :mconca?
This looks great. Thanks!
|
Assignee | |
Comment 5•5 years ago
|
||
|
||
Updated•5 years ago
|
|
||
Comment 7•5 years ago
|
||
| bugherder | ||
|
|
||
Updated•5 years ago
|
Description
•