Support SameSite cookie attribute

  • Thread starter Thread starter Xon
  • Start date Start date

Xon

Guest
Member
The SameSite cookie attribute is being rapidly adopted across browsers, and it backwards compatible.

Same-site cookies ("First-Party-Only" or "First-Party") allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.
Click to expand...
Click to expand...
Click to expand...
For cross-site integration purposes, this likely needs to be a config.php level toggle.

Continue...

Read more

Continue reading...
 
You must log in or register to reply here.
Top