You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Sandeep More (Jira)" <ji...@apache.org> on 2020/06/11 10:57:00 UTC

[jira] [Created] (KNOX-2387) KnoxSSO broken on recent Chrome browsers (version > 80)

Sandeep More created KNOX-2387:
----------------------------------

             Summary: KnoxSSO broken on recent Chrome browsers (version > 80)
                 Key: KNOX-2387
                 URL: https://issues.apache.org/jira/browse/KNOX-2387
             Project: Apache Knox
          Issue Type: Bug
          Components: KnoxSSO
            Reporter: Sandeep More
            Assignee: Sandeep More
             Fix For: 1.4.0


Google chrome changed the default behavior of SameSite parameter in Set-Cookie header from None to Lax. This causes partial breakage of Knox SSO. 

Details about Chrome browser feature - [https://www.chromestatus.com/feature/5088147346030592]

How it affects - [https://support.okta.com/help/s/article/FAQ-How-Chrome-80-Update-for-SameSite-by-default-Potentially-Impacts-Your-Okta-Environment]

 

 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)