Closed LumaiRashad closed 4 years ago
Can you share a Fiddler trace of the login flow?
Which browser are you using?
Fiddler's Trace: https://bit.ly/3lyPbE0
Using google chrome browser.
On request 2 the cookie is issued as Set-Cookie: .AspNet.Correlation.Google=osdI... path=/; HttpOnly; SameSite=None
, setting SameSite=None
but not secure
. It's not set as secure
because you're initiating the login over http rather than https.
Chrome is now requiring that all SameSite=None
cookies also be marked as secure
. You're going to need to make sure your logins happen over https.
This issue has been resolved and has not had any activity for 1 day. It will be closed for housekeeping purposes.
See our Issue Management Policies for more information.
I am using Microsoft.Owin.Security.Google version 4.1.0.0, it was working fine until suddenly I found out that loginInfo returns null
After checking the logger I found out that ValidateCorrelationId returns false,
Logger :
Which means
correlationCookie is null.
My Startup.Auth.cs