Revert "authenticate,proxy: add same site lax to cookies" #2203
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Reverts #2159
Summary
In certain situations, when Pomerium is paired with additional single-sign-on (SSO) systems (e.g. SAML) which perform a
POST
following authentication, the_pomerium
session could would not be set, and would result in an erroneous / blocking redirect flow loop.Next steps
We should allow user's to set their desired
SameSite
value as an option, and default to None.