Cookies: Default to SameSite=None for JSF 4.0 #11774

melloware · 2024-04-18T19:25:32Z

This warning in Firefox:

Cookie “pf.initialredirect-7ec98” does not have a proper “SameSite” attribute value. Soon, cookies without the “SameSite” attribute or with an invalid value will be treated as “Lax”. 
This means that the cookie will no longer be sent in third-party contexts. If your application depends on this cookie being available in such contexts, please add the “SameSite=None“ attribute to it. 
To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite

The text was updated successfully, but these errors were encountered:

melloware self-assigned this Apr 18, 2024

melloware added the enhancement Additional functionality to current component label Apr 18, 2024

melloware added this to the 14.0.0 milestone Apr 18, 2024

melloware added a commit to melloware/primefaces that referenced this issue Apr 18, 2024

Fix primefaces#11774: Cookies as SameSite=None in non-secure mode

54f8db0

melloware mentioned this issue Apr 18, 2024

Fix #11774: Cookies as SameSite=None in non-secure mode #11775

Merged

melloware closed this as completed in #11775 Apr 18, 2024

melloware added a commit that referenced this issue Apr 18, 2024

Fix #11774: Cookies as SameSite=None in non-secure mode (#11775)

0f79d49

metaxmx mentioned this issue May 31, 2024

monitorDownload: not working in Chrome with ajax=false and non-secure Cookies, due to SameSite=None #12045

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Cookies: Default to SameSite=None for JSF 4.0 #11774

Cookies: Default to SameSite=None for JSF 4.0 #11774

melloware commented Apr 18, 2024

Cookies: Default to SameSite=None for JSF 4.0 #11774

Cookies: Default to SameSite=None for JSF 4.0 #11774

Comments

melloware commented Apr 18, 2024