-
-
Notifications
You must be signed in to change notification settings - Fork 415
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Wrong usage of SameSite
cookie param in TokenResource
#4159
Comments
Our implementation is provided by |
Hmm okay. Is there a way to get |
No, probably not. Because of the namespace change from |
Should be possible. |
…cookie Fixes openhab#4159. Signed-off-by: Florian Hotze <florianh_dev@icloud.com>
Unfortunately, creating our own cookie implementation doesn't help, because the servlet seems to also need an adjustment. However I found another simple workaround, see #4160. |
When logging in to Main UI , Firefox is printing this warning to the log:
Also see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#samesitesamesite-value.
I would like to set
SameSite
tostrict
, which is supported by thejavax.ws.rs.core.NewCookie
(see jakartaee/rest#868) since JakartaEE 3.1, however is the change from the linked PR not available.How do I found out the version of Jakarta EE in use by core?
@J-N-K May I ask for your help?
The text was updated successfully, but these errors were encountered: