Open martynaslawinska opened 3 years ago
If I understand correctly, idea here is to add a new json property to switch on/off "SameSite" config for session_state
cookie. New json property could be called something like: sameSiteSessionStateCookie
and could accept values: Lax
, Strict
, None
or null.
Yes, correct. If not set then current behavior.
mzico commented on Mar 23, 2020 There should be an option to modify "SameSite" attribute of session_state cookie. This will allow organization to modify their Gluu Server's cookie settings according to their own need.