![]() OpenIdConnect authentication operations (e.g. Not setting the property at all placed no restrictions on how the cookie flowed in requests. ![]() A value of Strict limited the cookie to requests which only originated from the same site. Setting the value to Lax indicated the cookie should be sent on navigation within the same site, or through GET navigation to your site from other sites. The original design was an opt-in feature which could be used by adding a new SameSite property to cookies. SameSite is a 2016 extension to HTTP cookies intended to mitigate cross site request forgery (CSRF).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |