We use cookies to improve your experience. No personal information is gathered and we don't serve ads. Cookies Policy.

ExpressionEngine
Log In Sign Up

[SOLVED] SameSite attribute on cookies

How Do I?

xcl's avatar
xcl
104 posts
4 years ago
xcl's avatar xcl

Firefox, probably others are complaining of:

Cookie ‘exp_last_visit’ will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite

Is there a way to set this within EE as I cannot find any reference to it.

Thanks!

       
Andy McCormick's avatar
Andy McCormick
183 posts
4 years ago
Andy McCormick's avatar Andy McCormick

yes. this was a config override that was recently added: https://docs.expressionengine.com/latest/general/system-configuration-overrides.html#cookie_samesite

       
xcl's avatar
xcl
104 posts
4 years ago
xcl's avatar xcl

Ah thanks!

$config['cookie_samesite'] = 'Srict';

Small typo in your example.

       
xcl's avatar
xcl
104 posts
4 years ago
xcl's avatar xcl

Would there be a reason that a form fails with ” This form has expired. Please refresh and try again.” when cookie_secure is set to y?

       

Reply

Sign In To Reply

ExpressionEngine Home Features Pro Contact Version Support
Learn Docs University Forums
Resources Support Add-Ons Partners Blog
Privacy Terms Trademark Use License

Packet Tide owns and develops ExpressionEngine. © Packet Tide, All Rights Reserved.