[
https://issues.apache.org/jira/browse/JSPWIKI-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18038155#comment-18038155
]
ASF subversion and git services commented on JSPWIKI-1129:
----------------------------------------------------------
Commit 41284b3def41f9a62149a26590cdbe1040d31b3f in jspwiki's branch
refs/heads/master from spyhunter99
[ https://gitbox.apache.org/repos/asf?p=jspwiki.git;h=41284b3de ]
Merge pull request #422 from spyhunter99/feature/JSPWIKI-1129
JSPWIKI-1129 bumps up the security on all cookies that are set by jsp…
> JSPUserWikiPrefs cookie is missing sameSite and/or secure attribute
> --------------------------------------------------------------------
>
> Key: JSPWIKI-1129
> URL: https://issues.apache.org/jira/browse/JSPWIKI-1129
> Project: JSPWiki
> Issue Type: Improvement
> Components: Templates and UI
> Affects Versions: 2.11.0-M6
> Environment: This can be reproduced on https://jspwiki-wiki.apache.org
> Reporter: Ulf Dittmer
> Assignee: Alex O'Ree
> Priority: Minor
> Labels: pull-request-available
>
> Firefox shows this message in the console: Cookie “JSPWikiUserPrefs” will be
> soon rejected because it has the “sameSite” attribute set to “none” or an
> invalid value, without the “secure” attribute. To know more about the
> “sameSite“ attribute, read
> [https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
