Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

support partitioned CHIPS cookies #183

Open
gregwebs opened this issue Nov 3, 2023 · 3 comments
Open

support partitioned CHIPS cookies #183

gregwebs opened this issue Nov 3, 2023 · 3 comments
Labels
blocked

Comments

@gregwebs
Copy link

gregwebs commented Nov 3, 2023

Chrome warns about cross-domain cookies.

Cookie set in cross-site context will be blocked in future Chrome versions
In a future version of the browser, cookies marked with SameSite=None; Secure and not Partitioned will be blocked in cross-site context. This behavior protects user data from cross-site tracking.

The go standard library doesn't yet support this, but in the end a cookie is just a simple header that SCS could append to.
@alexedwards
Copy link
Owner

alexedwards commented Nov 12, 2023
edited
Loading

I'd be happy to add this, but I'm wary of changing the public API of the SessionCookie type until we know exactly what the implementation will look like in net/http. Let's keep this issue open, but label it as blocked for now.

@papidb
Copy link

papidb commented May 4, 2024

Hi @alexedwards is there a way to set this using the library?

@orielg
Copy link

orielg commented Sep 4, 2024

Hi @alexedwards - this feature was released in Go 1.23. Any chance to introduce this in SCS?
https://tip.golang.org/doc/go1.23

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
blocked
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@gregwebs @alexedwards @orielg @papidb