Level 1

Question

Chrome 80+ appears to block cookie and not display forms on company site

Forum|Forum|6 years ago
January 7, 2020
3 replies
6819 views

I tried looking through the support but did not find an exact answer in regards to forms being hosted on company site, i.e. not a Marketo landing page.

I am using Chrome Canary 81.0.4020.0 and see the warning message:

A cookie associated with a cross-site resource at <URL> was set without the `SameSite` attribute. It has been blocked, as Chrome now only delivers cookies with cross-site requests if they are set with `SameSite=None` and `Secure`.

It also references Cookies default to SameSite=Lax - Chrome Platform Status and Reject insecure SameSite=None cookies - Chrome Platform Status

The actual error that is concerning is attached below and appears to be an authentication error for forms2.min.js

Everything is working as intended on FF, Safari, and Chrome 79.0.3945.88 and so I just want to be prepared if this issue is associated with cookies or something more serious.

Thanks

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

SanfordWhiteman

Level 10

Pls remove attachments and paste inline. Not all users can see attachments.

Alex_ArvanitidiAuthor

Level 1

Edited to paste inline, thanks

SanfordWhiteman

Level 10

The problem is not confined to Marketo (and it doesn't have to do with the blocked cookie, that's a different matter -- a concern in its own right, but different).

The problem is that CloudFlare may throw 403 errors when Chrome 80+ is used -- and that's any site that uses CloudFlare's proxy service, not just Marketo.

For example (you may not find this reassuring, but you should) this is the console output when I load my CodePen CSS styles (which have nothing to do with Marketo) from a CodePen page that also hosts a Marketo form:

Don't get me wrong, CloudFlare is a janky choice for a site like Marketo that doesn't allow separate developer access, but millions of sites use it.

As for a solution, I have something in mind, but it's going to be pretty crazy. You may want to wait to see if Chrome and CloudFlare can work out their differences before release.

Michael_Roper1

Level 2

I'm also running into this in Chrome beta (80.0.x), while fine in other browsers. Forms not loading, and if I try accessing that forms2.min.js url directly, I get challenged with a CloudFlare captcha.

Makes me wonder how many others are getting bitten by this, and not realising... Interested to hear about your solution, Sanford!

Kelsey_Williams

Level 2

Our org began noticing this form fill issue on 1/6. After a full day of troubleshooting we thought we had a workaround in place as form fills data began to flow into Marketo but we are once again having issues today.

S

SarahGr9

Level 1

what if you are using http on mkto landing pages. Will forms display? Or do we need to amend the code? Or do we need to do nothing?

SanfordWhiteman

Level 10

Not sure which set of symptoms you're referring to.

CloudFlare-related 403s are unrelated to http: vs https:.

SameSite/secure-related problems mandate that you load your Marketo LPs over SSL.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded