[
https://issues.apache.org/jira/browse/OFBIZ-13284?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jacques Le Roux reassigned OFBIZ-13284:
---------------------------------------
Fix Version/s: 24.09.03
(was: Upcoming Branch)
Affects Version/s: 24.09.02
Assignee: Jacques Le Roux
Issue Type: Bug (was: Improvement)
> Set default security headers in writeJSONtoResponse and ensure SameSite
> cookie is returned
> ------------------------------------------------------------------------------------------
>
> Key: OFBIZ-13284
> URL: https://issues.apache.org/jira/browse/OFBIZ-13284
> Project: OFBiz
> Issue Type: Bug
> Components: framework/common
> Affects Versions: 24.09.02
> Reporter: Sandeep Rajput
> Assignee: Jacques Le Roux
> Priority: Major
> Fix For: 24.09.03
>
>
> Currently, the writeJSONtoResponse method correctly sends the JSON response,
> but it does not include the SameSite attribute in the default security
> headers. As a result, the SameSite cookie is not returned in the browser
> response.
> *Expected Behavior:*
> # writeJSONtoResponse should set default security headers for the response.
> # SameSite attribute should be correctly applied to all cookies sent in the
> response.
> # The browser should receive and respect the SameSite cookie.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
