Closed Bug 1626696 Opened 5 years ago Closed 3 years ago

Playstation web services login broken with network.cookie.sameSite.laxByDefault true

Categories

(Core :: Networking: Cookies, defect, P3)

defect

Tracking

()

RESOLVED WORKSFORME
Webcompat Priority P3
Tracking Status
firefox-esr78 --- disabled
firefox78 --- disabled
firefox79 --- disabled
firefox80 --- disabled
firefox81 --- disabled
firefox82 --- disabled
firefox83 --- disabled
firefox84 --- disabled
firefox85 --- disabled
firefox86 --- disabled
firefox87 --- disabled
firefox88 --- disabled

People

(Reporter: bradwerth, Unassigned)

References

(Regression, )

Details

(Keywords: regression, webcompat:site-wait, Whiteboard: [necko-triaged])

Steps to Reproduce (requires a Playstation Network account):

  1. Navigate to https://my.playstation.com, click Sign In.
  2. On https://id.sonyentertainmentnetwork.com, enter credentials, click Sign In.

Expected Results: should redirect to https://my.playstation.com/whatsnew.

Actual Results: redirects to https://my.playstation.com -- back to where you started.

Mozregression + manual bisection found Bug 1620179 as the culprit. Like that bug, if the network.cookie.sameSite.laxByDefault pref is set to false, the bug no longer occurs.

Flags: needinfo?(amarchesini)
Priority: -- → P1
Whiteboard: [necko-triaged]

The same issue happens with Chrome when sameSite feature is enabled. The cookies are not set with sameSite attribute.
Peter, do you know how to contact the playstation website?

Flags: needinfo?(amarchesini) → needinfo?(stpeter)
Priority: P1 → P2

I've sent an email to a contact at Sony, hoping to get routed to the right folks.

Flags: needinfo?(stpeter)
See Also: → 1653490

Mike, did you get an answer from Sony? Thanks

I did not unfortunately. I will try to follow up again, it seemed like a promising lead.

Flags: needinfo?(miket)
Severity: normal → S3

(In reply to Andrea Marchesini [:baku] from comment #1)

The same issue happens with Chrome when sameSite feature is enabled. The cookies are not set with sameSite attribute.
Peter, do you know how to contact the playstation website?

Hi Brad, can you re-test? We're not seeing the bug in Chrome (someone on my team just tested today).

Flags: needinfo?(bwerth)

It's no longer happening; the site design has changed.

Flags: needinfo?(bwerth)
Status: NEW → RESOLVED
Closed: 4 years ago
Resolution: --- → INVALID

I'm still duplicating this on the latest nightly. When I click "Aanmelden" to login (Dutch region, not sure how to change the region on this site for testing, there is no selector) it briefly flickers to another address in the URL bar and then back without logging me in.

This is when already logged in to my.account.sony.com from this site or another Sony site like store.playstation.com. If not logged in, it takes me to my.account.sony.com to log me in but then after login kicks me back to my.playstation.com again, still not logged in.

I cannot duplicate this behavior in Chrome or Safari. I tried submitting a new bug on webcompat but it got closed as a duplicate of this (also closed) bug....

Status: RESOLVED → REOPENED
Resolution: INVALID → ---

Indeed, I can't login successfully from https://my.playstation.com/. The behavior is the same as specified in the original report. Don't know what I saw in comment 7 that caused me to close the bug.

I had this issue on Firefox Nightly, now I realized that it's happening in Firefox Beta Mobile as well.

(In reply to Arash Mousavi [:Arash-M] from comment #10)

I had this issue on Firefox Nightly, now I realized that it's happening in Firefox Beta Mobile as well.

@ Arash, what is the Gecko User-Agent string of your Firefox Beta on Android? I think Firefox Beta on Android uses the Nightly version of Gecko (currently version 86), not the Beta version (85).

I can reproduce this bug on desktop in 86 Nightly, but not 85 Beta.

@chris I can't reproduce it now anymore. I guess it's fine in Firefox Beta on Android.

(In reply to Arash Mousavi [:Arash-M] from comment #12)

@chris I can't reproduce it now anymore. I guess it's fine in Firefox Beta on Android.

I'm still able to duplicate it on Firefox Nightly on Windows at the moment

Webcompat Priority: --- → ?
Webcompat Priority: ? → ---
Webcompat Priority: --- → P3

I am not able to reproduce this problem on Nightly 96.0a1.

Hi Brad, can you confirm that this has gone away? Thanks for your support!

Flags: needinfo?(bwerth)

(In reply to Jens Stutte [:jstutte] from comment #15)

Hi Brad, can you confirm that this has gone away? Thanks for your support!

Yes, I can sign in successfully.

Status: REOPENED → RESOLVED
Closed: 4 years ago3 years ago
Flags: needinfo?(bwerth)
Resolution: --- → WORKSFORME
Has Regression Range: --- → yes
You need to log in before you can comment on or make changes to this bug.