Cookie samesite warning in aem

Question

Hi,Am using AEM 6.5,Recently we are getting the below warning messages in chrome browser, A cookie associated with a cross-site resource at http://mxpez29397.i.lithium.com/ was set without the `SameSite` attribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set with `SameSite=None` and `Secure`. You can review cookies in developer tools under Application>Storage>Cookies and see more details at https://www.chromestatus.com/feature/5088147346030592 and https://www.chromestatus.com/feature/5633521622188032.A cookie associated with a cross-site resource at http://www.facebook.com/ was set without the `SameSite` attribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set with `SameSite=None` and `Secure`. You can review cookies in developer tools under Application>Storage>Cookies and see more details at https://www.chromestatus.com/feature/5088147346030592 and https://www.chromestatus.com/feature/5633521622188032.I tried to enable the session cookie secure in Apache Felix Jetty based Http Service, but it doesn't works.Please let me know how to resolve this.

Peter_Puzanovs · Accepted Answer

Dear Prasak,

More docs on the change required:

https://github.com/GoogleChromeLabs/samesite-examples

and consequent changes in Apache:

https://stackoverflow.com/questions/54104573/how-to-set-samesite-cookie-attribute-using-apache-configuration

Regards,

Peter

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded