Playstation web services login broken with network.cookie.sameSite.laxByDefault true
Categories
(Core :: Networking: Cookies, defect, P3)
Tracking
()
Webcompat Priority | P3 |
People
(Reporter: bradwerth, Unassigned)
References
(Regression, )
Details
(Keywords: regression, webcompat:site-wait, Whiteboard: [necko-triaged])
Steps to Reproduce (requires a Playstation Network account):
- Navigate to https://my.playstation.com, click Sign In.
- On https://id.sonyentertainmentnetwork.com, enter credentials, click Sign In.
Expected Results: should redirect to https://my.playstation.com/whatsnew.
Actual Results: redirects to https://my.playstation.com -- back to where you started.
Mozregression + manual bisection found Bug 1620179 as the culprit. Like that bug, if the network.cookie.sameSite.laxByDefault pref is set to false, the bug no longer occurs.
Updated•5 years ago
|
Updated•5 years ago
|
Comment 1•5 years ago
|
||
The same issue happens with Chrome when sameSite feature is enabled. The cookies are not set with sameSite attribute.
Peter, do you know how to contact the playstation website?
Updated•5 years ago
|
Comment 2•5 years ago
|
||
I've sent an email to a contact at Sony, hoping to get routed to the right folks.
Updated•4 years ago
|
Comment 4•4 years ago
|
||
Mike, did you get an answer from Sony? Thanks
Comment 5•4 years ago
|
||
I did not unfortunately. I will try to follow up again, it seemed like a promising lead.
Updated•4 years ago
|
Updated•4 years ago
|
Updated•4 years ago
|
Updated•4 years ago
|
Updated•4 years ago
|
Updated•4 years ago
|
Comment 6•4 years ago
|
||
(In reply to Andrea Marchesini [:baku] from comment #1)
The same issue happens with Chrome when sameSite feature is enabled. The cookies are not set with sameSite attribute.
Peter, do you know how to contact the playstation website?
Hi Brad, can you re-test? We're not seeing the bug in Chrome (someone on my team just tested today).
Reporter | ||
Comment 7•4 years ago
|
||
It's no longer happening; the site design has changed.
Reporter | ||
Updated•4 years ago
|
I'm still duplicating this on the latest nightly. When I click "Aanmelden" to login (Dutch region, not sure how to change the region on this site for testing, there is no selector) it briefly flickers to another address in the URL bar and then back without logging me in.
This is when already logged in to my.account.sony.com from this site or another Sony site like store.playstation.com. If not logged in, it takes me to my.account.sony.com to log me in but then after login kicks me back to my.playstation.com again, still not logged in.
I cannot duplicate this behavior in Chrome or Safari. I tried submitting a new bug on webcompat but it got closed as a duplicate of this (also closed) bug....
Reporter | ||
Updated•4 years ago
|
Reporter | ||
Comment 9•4 years ago
|
||
Indeed, I can't login successfully from https://my.playstation.com/. The behavior is the same as specified in the original report. Don't know what I saw in comment 7 that caused me to close the bug.
Updated•4 years ago
|
Comment 10•4 years ago
|
||
I had this issue on Firefox Nightly, now I realized that it's happening in Firefox Beta Mobile as well.
Comment 11•4 years ago
|
||
(In reply to Arash Mousavi [:Arash-M] from comment #10)
I had this issue on Firefox Nightly, now I realized that it's happening in Firefox Beta Mobile as well.
@ Arash, what is the Gecko User-Agent string of your Firefox Beta on Android? I think Firefox Beta on Android uses the Nightly version of Gecko (currently version 86), not the Beta version (85).
I can reproduce this bug on desktop in 86 Nightly, but not 85 Beta.
Comment 12•4 years ago
|
||
@chris I can't reproduce it now anymore. I guess it's fine in Firefox Beta on Android.
Comment 13•4 years ago
|
||
(In reply to Arash Mousavi [:Arash-M] from comment #12)
@chris I can't reproduce it now anymore. I guess it's fine in Firefox Beta on Android.
I'm still able to duplicate it on Firefox Nightly on Windows at the moment
Updated•4 years ago
|
Updated•4 years ago
|
Updated•4 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Comment 14•3 years ago
|
||
I am not able to reproduce this problem on Nightly 96.0a1.
Comment 15•3 years ago
|
||
Hi Brad, can you confirm that this has gone away? Thanks for your support!
Reporter | ||
Comment 16•3 years ago
|
||
(In reply to Jens Stutte [:jstutte] from comment #15)
Hi Brad, can you confirm that this has gone away? Thanks for your support!
Yes, I can sign in successfully.
Updated•3 years ago
|
Description
•