[wp-trac] [WordPress Trac] #37000: Support for the SameSite cookie attribute

WordPress Trac noreply at wordpress.org
Fri Apr 10 17:41:00 UTC 2020


#37000: Support for the SameSite cookie attribute
-------------------------------------------------+-------------------------
 Reporter:  johnbillion                          |       Owner:  (none)
     Type:  enhancement                          |      Status:  new
 Priority:  normal                               |   Milestone:  Future
                                                 |  Release
Component:  Security                             |     Version:
 Severity:  normal                               |  Resolution:
 Keywords:  has-patch dev-feedback needs-        |     Focuses:
  refresh needs-dev-note                         |  administration
-------------------------------------------------+-------------------------

Comment (by ayeshrajans):

 WordPress should pass the "secure" flag if the page is served with HTTPS.
 Setting "secure" flag over an HTTP connection will make browsers downright
 reject the cookie. Is your site is being served over HTTPS?

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/37000#comment:28>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list