[FOLIO-3913] Add LOGIN_COOKIE_SAMESITE to mod-login and mod-login-saml in snapshot in folio-ansible Created: 15/Oct/23 Updated: 19/Oct/23 Resolved: 19/Oct/23 |
|
| Status: | Closed |
| Project: | FOLIO |
| Components: | None |
| Affects versions: | None |
| Fix versions: | None |
| Type: | Task | Priority: | TBD |
| Reporter: | Steve Ellis | Assignee: | Unassigned |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||
| Sprint: | |||||||||
| Development Team: | Core: Platform | ||||||||
| RCA Group: | TBD | ||||||||
| Description |
|
We would like to make the cookie more secure, but initial testing shows that the SameSite=Lax attribute doesn't work when hosts are different with GET requests. Acceptance criteria: We should test setting it to Lax in perhaps rancher to further explore if we can make that work with different hosts. |