Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implements the "sameSite"-attribute for the cookie #734

Open
wants to merge 2 commits into
base: master
Choose a base branch
from

Conversation

Enaah
Copy link

@Enaah Enaah commented Jun 21, 2020

Enaah added 2 commits June 21, 2020 16:25
- adds the parameter `sameSite` to the `setCookie()`-Function
- implements the attribute `sameSite` in the `defaultOptions`-Object (defaultOptions.cookie.sameSite) with the default value of `null` (allowed is `None`, `Lax` and `Strict`)
- More information: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite
- the `clearStatus()`-Function was missing the `secure`-Parameter
@wouterjanssens
Copy link

What is the reason that this PR does not go through? We need this change to be able to run our application as an embedded application in Microsoft Teams. Now the cookie-consent comes back every time because Teams does not allow cookies without the SameSite filled in.

@Enaah
Copy link
Author

Enaah commented Aug 12, 2021

I guess the maintainer has no interest in PRs.
This package is no really maintained (publicly).
Or maybe they are waiting for a 4.0 release.

But still not supporting sameSite is not good.

You can use my fork if sameSite is essential for you (but I'm not not developing further): https://github.com/Enaah/cookieconsent/tree/fix-cookie--no-sameSite-attribute

Maybe @arlogilbert can explain why this PR is not picked up...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants