[wp-trac] [WordPress Trac] #37000: Support for the SameSite cookie attribute
WordPress Trac
noreply at wordpress.org
Mon Jun 20 02:37:38 UTC 2016
#37000: Support for the SameSite cookie attribute
--------------------------------------+------------------------------
Reporter: johnbillion | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: normal | Resolution:
Keywords: dev-feedback needs-patch | Focuses: administration
--------------------------------------+------------------------------
Comment (by mwaclawek):
Just a quick note: A compatible and testable replacement for PHP's
"setcookie" is available here: https://github.com/delight-im/PHP-Cookie It
has support for same-site cookies as well.
Do we really need to wait until the spec is finalized? Chrome has shipped
an implementation based on the current draft already, so implementing the
current spec would have a real impact on user security immediately (though
only for Chrome users).
--
Ticket URL: <https://core.trac.wordpress.org/ticket/37000#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list