You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2020/06/17 10:49:00 UTC
[jira] [Commented] (KNOX-2387) KnoxSSO broken on recent Chrome
browsers (version > 80)
[ https://issues.apache.org/jira/browse/KNOX-2387?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17138336#comment-17138336 ]
ASF subversion and git services commented on KNOX-2387:
-------------------------------------------------------
Commit d10e15d5eda566bc978bc2cc3e7c8fa26cd73577 in knox's branch refs/heads/master from Sandeep Moré
[ https://gitbox.apache.org/repos/asf?p=knox.git;h=d10e15d ]
KNOX-2387 - SameSite fix for hadoop-jwt cookie (#347)
> KnoxSSO broken on recent Chrome browsers (version > 80)
> -------------------------------------------------------
>
> Key: KNOX-2387
> URL: https://issues.apache.org/jira/browse/KNOX-2387
> Project: Apache Knox
> Issue Type: Bug
> Components: KnoxSSO
> Reporter: Sandeep More
> Assignee: Sandeep More
> Priority: Major
> Fix For: 1.4.0
>
> Time Spent: 50m
> Remaining Estimate: 0h
>
> Google chrome changed the default behavior of SameSite parameter in Set-Cookie header from None to Lax. This causes partial breakage of Knox SSO.
> Details about Chrome browser feature - [https://www.chromestatus.com/feature/5088147346030592]
> How it affects - [https://support.okta.com/help/s/article/FAQ-How-Chrome-80-Update-for-SameSite-by-default-Potentially-Impacts-Your-Okta-Environment]
>
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)