~runxiyu/sjdb#16: 
Firefox complaining about the lack of SameSite in cookies

Firefox says:

Cookie “session” does not have a proper “SameSite” attribute value. Soon, cookies without the “SameSite” attribute or with an invalid value will be treated as “Lax”. This means that the cookie will no longer be sent in third-party contexts. If your application depends on this cookie being available in such contexts, please add the “SameSite=None“ attribute to it. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite

Status
REPORTED
Submitter
~runxiyu
Assigned to
No-one
Submitted
7 months ago
Updated
7 months ago
Labels
bug security

~runxiyu 7 months ago

This is probably an upstream bug in either Flask-Session or identity.

Register here or Log in to comment, or comment via email.