Add third party cookie names

[joshliebe]

Asana Task/Github Issue: https://app.asana.com/0/488551667048375/1207559689299629/f

Description

Fixes Google login issues on Android for:

• poshmark.com
• samsung.com
• upwork.com
• app.plex.tv

Cookies excluded:

• "user_id"
• "__Secure-3PAPISID"
• "SAPISID"
• "APISID"

Reference

• Config Reviewer Documentation
• Config Maintainer Documentation
• Feature Implementer Documentation

[github-actions[bot]]

Generated file outputs:

legacy

fingerprinting.json (3 more)

- fingerprinting.json - protections.json - trackers-unprotected-temporary.txt - trackers-whitelist-temporary.txt ⚠️ File is identical

v1/android-config.json (2 more)

- v1/android-config.json - v2/android-config.json - v3/android-config.json ```diff --- v3/android-config.json +++ v3/android-config.json @@ -6960,8 +6960,20 @@ }, "exceptions": [], "minSupportedVersion": 51850000 }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "enabled", + "settings": { + "cookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] + } + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

v1/extension-brave-config.json (38 more)

- v1/extension-brave-config.json - v1/extension-bravemv3-config.json - v1/extension-chrome-config.json - v1/extension-chromemv3-config.json - v1/extension-config.json - v1/extension-edg-config.json - v1/extension-edge-config.json - v1/extension-edgmv3-config.json - v1/extension-firefox-config.json - v1/extension-safarimv3-config.json - v1/ios-config.json - v1/macos-config.json - v1/windows-config.json - v2/extension-brave-config.json - v2/extension-bravemv3-config.json - v2/extension-chrome-config.json - v2/extension-chromemv3-config.json - v2/extension-config.json - v2/extension-edg-config.json - v2/extension-edge-config.json - v2/extension-edgmv3-config.json - v2/extension-firefox-config.json - v2/extension-safarimv3-config.json - v2/ios-config.json - v2/macos-config.json - v2/windows-config.json - v3/extension-brave-config.json - v3/extension-bravemv3-config.json - v3/extension-chrome-config.json - v3/extension-chromemv3-config.json - v3/extension-config.json - v3/extension-edg-config.json - v3/extension-edge-config.json - v3/extension-edgmv3-config.json - v3/extension-firefox-config.json - v3/extension-safarimv3-config.json - v3/ios-config.json - v3/macos-config.json - v3/windows-config.json ```diff --- v3/windows-config.json +++ v3/windows-config.json @@ -5628,8 +5628,12 @@ } }, "exceptions": [] }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

latest

v4/android-config.json

```diff --- v4/android-config.json +++ v4/android-config.json @@ -6424,8 +6424,20 @@ }, "exceptions": [], "minSupportedVersion": 51850000 }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "enabled", + "settings": { + "cookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] + } + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

v4/extension-brave-config.json (12 more)

- v4/extension-brave-config.json - v4/extension-bravemv3-config.json - v4/extension-chrome-config.json - v4/extension-chromemv3-config.json - v4/extension-config.json - v4/extension-edg-config.json - v4/extension-edge-config.json - v4/extension-edgmv3-config.json - v4/extension-firefox-config.json - v4/extension-safarimv3-config.json - v4/ios-config.json - v4/macos-config.json - v4/windows-config.json ```diff --- v4/windows-config.json +++ v4/windows-config.json @@ -5200,8 +5200,12 @@ } }, "exceptions": [] }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

[github-actions[bot]]

Generated file outputs:

legacy

fingerprinting.json (3 more)

- fingerprinting.json - protections.json - trackers-unprotected-temporary.txt - trackers-whitelist-temporary.txt ⚠️ File is identical

v1/android-config.json (2 more)

- v1/android-config.json - v2/android-config.json - v3/android-config.json ```diff --- v3/android-config.json +++ v3/android-config.json @@ -2163,32 +2163,14 @@ ] }, "cookie": { "settings": { - "trackerCookie": "enabled", - "nonTrackerCookie": "disabled", - "excludedCookieDomains": [ - { - "domain": "accounts.google.com", - "reason": "On some Google sign-in flows, there is an error after entering username and proceeding: 'Your browser has cookies disabled. Make sure that your cookies are enabled and try again.'" - }, - { - "domain": "pay.google.com", - "reason": "After sign-in for Google Pay flows, there is repeated flickering and a loading spinner, preventing the flow from proceeding." - }, - { - "domain": "payments.google.com", - "reason": "After sign-in for Google Pay flows (after flickering is resolved), blocking this causes the loading spinner to spin indefinitely, and the payment flow cannot proceed." - } - ], - "firstPartyTrackerCookiePolicy": { - "threshold": 86400, - "maxAge": 86400 - }, - "firstPartyCookiePolicy": { - "threshold": 604800, - "maxAge": 604800 - } + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com", @@ -6969,8 +6951,12 @@ }, "exceptions": [], "minSupportedVersion": 51850000 }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

v1/extension-brave-config.json (38 more)

- v1/extension-brave-config.json - v1/extension-bravemv3-config.json - v1/extension-chrome-config.json - v1/extension-chromemv3-config.json - v1/extension-config.json - v1/extension-edg-config.json - v1/extension-edge-config.json - v1/extension-edgmv3-config.json - v1/extension-firefox-config.json - v1/extension-safarimv3-config.json - v1/ios-config.json - v1/macos-config.json - v1/windows-config.json - v2/extension-brave-config.json - v2/extension-bravemv3-config.json - v2/extension-chrome-config.json - v2/extension-chromemv3-config.json - v2/extension-config.json - v2/extension-edg-config.json - v2/extension-edge-config.json - v2/extension-edgmv3-config.json - v2/extension-firefox-config.json - v2/extension-safarimv3-config.json - v2/ios-config.json - v2/macos-config.json - v2/windows-config.json - v3/extension-brave-config.json - v3/extension-bravemv3-config.json - v3/extension-chrome-config.json - v3/extension-chromemv3-config.json - v3/extension-config.json - v3/extension-edg-config.json - v3/extension-edge-config.json - v3/extension-edgmv3-config.json - v3/extension-firefox-config.json - v3/extension-safarimv3-config.json - v3/ios-config.json - v3/macos-config.json - v3/windows-config.json ```diff --- v3/windows-config.json +++ v3/windows-config.json @@ -5637,8 +5637,12 @@ } }, "exceptions": [] }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

latest

v4/android-config.json

```diff --- v4/android-config.json +++ v4/android-config.json @@ -1868,32 +1868,14 @@ ] }, "cookie": { "settings": { - "trackerCookie": "enabled", - "nonTrackerCookie": "disabled", - "excludedCookieDomains": [ - { - "domain": "accounts.google.com", - "reason": "On some Google sign-in flows, there is an error after entering username and proceeding: 'Your browser has cookies disabled. Make sure that your cookies are enabled and try again.'" - }, - { - "domain": "pay.google.com", - "reason": "After sign-in for Google Pay flows, there is repeated flickering and a loading spinner, preventing the flow from proceeding." - }, - { - "domain": "payments.google.com", - "reason": "After sign-in for Google Pay flows (after flickering is resolved), blocking this causes the loading spinner to spin indefinitely, and the payment flow cannot proceed." - } - ], - "firstPartyTrackerCookiePolicy": { - "threshold": 86400, - "maxAge": 86400 - }, - "firstPartyCookiePolicy": { - "threshold": 604800, - "maxAge": 604800 - } + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com" @@ -6432,8 +6414,12 @@ }, "exceptions": [], "minSupportedVersion": 51850000 }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

v4/extension-brave-config.json (12 more)

- v4/extension-brave-config.json - v4/extension-bravemv3-config.json - v4/extension-chrome-config.json - v4/extension-chromemv3-config.json - v4/extension-config.json - v4/extension-edg-config.json - v4/extension-edge-config.json - v4/extension-edgmv3-config.json - v4/extension-firefox-config.json - v4/extension-safarimv3-config.json - v4/ios-config.json - v4/macos-config.json - v4/windows-config.json ```diff --- v4/windows-config.json +++ v4/windows-config.json @@ -5208,8 +5208,12 @@ } }, "exceptions": [] }, + "thirdPartyCookieNames": { + "exceptions": [], + "state": "disabled" + }, "trackerAllowlist": { "state": "enabled", "settings": { "allowlistedTrackers": { ```

[github-actions[bot]]

Generated file outputs:

legacy

fingerprinting.json (42 more)

- fingerprinting.json - protections.json - trackers-unprotected-temporary.txt - trackers-whitelist-temporary.txt - v1/extension-brave-config.json - v1/extension-bravemv3-config.json - v1/extension-chrome-config.json - v1/extension-chromemv3-config.json - v1/extension-config.json - v1/extension-edg-config.json - v1/extension-edge-config.json - v1/extension-edgmv3-config.json - v1/extension-firefox-config.json - v1/extension-safarimv3-config.json - v1/ios-config.json - v1/macos-config.json - v1/windows-config.json - v2/extension-brave-config.json - v2/extension-bravemv3-config.json - v2/extension-chrome-config.json - v2/extension-chromemv3-config.json - v2/extension-config.json - v2/extension-edg-config.json - v2/extension-edge-config.json - v2/extension-edgmv3-config.json - v2/extension-firefox-config.json - v2/extension-safarimv3-config.json - v2/ios-config.json - v2/macos-config.json - v2/windows-config.json - v3/extension-brave-config.json - v3/extension-bravemv3-config.json - v3/extension-chrome-config.json - v3/extension-chromemv3-config.json - v3/extension-config.json - v3/extension-edg-config.json - v3/extension-edge-config.json - v3/extension-edgmv3-config.json - v3/extension-firefox-config.json - v3/extension-safarimv3-config.json - v3/ios-config.json - v3/macos-config.json - v3/windows-config.json ⚠️ File is identical

v1/android-config.json (2 more)

- v1/android-config.json - v2/android-config.json - v3/android-config.json ```diff --- v3/android-config.json +++ v3/android-config.json @@ -2163,32 +2163,14 @@ ] }, "cookie": { "settings": { - "trackerCookie": "enabled", - "nonTrackerCookie": "disabled", - "excludedCookieDomains": [ - { - "domain": "accounts.google.com", - "reason": "On some Google sign-in flows, there is an error after entering username and proceeding: 'Your browser has cookies disabled. Make sure that your cookies are enabled and try again.'" - }, - { - "domain": "pay.google.com", - "reason": "After sign-in for Google Pay flows, there is repeated flickering and a loading spinner, preventing the flow from proceeding." - }, - { - "domain": "payments.google.com", - "reason": "After sign-in for Google Pay flows (after flickering is resolved), blocking this causes the loading spinner to spin indefinitely, and the payment flow cannot proceed." - } - ], - "firstPartyTrackerCookiePolicy": { - "threshold": 86400, - "maxAge": 86400 - }, - "firstPartyCookiePolicy": { - "threshold": 604800, - "maxAge": 604800 - } + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com", ```

latest

v4/android-config.json

```diff --- v4/android-config.json +++ v4/android-config.json @@ -1868,32 +1868,14 @@ ] }, "cookie": { "settings": { - "trackerCookie": "enabled", - "nonTrackerCookie": "disabled", - "excludedCookieDomains": [ - { - "domain": "accounts.google.com", - "reason": "On some Google sign-in flows, there is an error after entering username and proceeding: 'Your browser has cookies disabled. Make sure that your cookies are enabled and try again.'" - }, - { - "domain": "pay.google.com", - "reason": "After sign-in for Google Pay flows, there is repeated flickering and a loading spinner, preventing the flow from proceeding." - }, - { - "domain": "payments.google.com", - "reason": "After sign-in for Google Pay flows (after flickering is resolved), blocking this causes the loading spinner to spin indefinitely, and the payment flow cannot proceed." - } - ], - "firstPartyTrackerCookiePolicy": { - "threshold": 86400, - "maxAge": 86400 - }, - "firstPartyCookiePolicy": { - "threshold": 604800, - "maxAge": 604800 - } + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com" ```

v4/extension-brave-config.json (12 more)

- v4/extension-brave-config.json - v4/extension-bravemv3-config.json - v4/extension-chrome-config.json - v4/extension-chromemv3-config.json - v4/extension-config.json - v4/extension-edg-config.json - v4/extension-edge-config.json - v4/extension-edgmv3-config.json - v4/extension-firefox-config.json - v4/extension-safarimv3-config.json - v4/ios-config.json - v4/macos-config.json - v4/windows-config.json ⚠️ File is identical

[github-actions[bot]]

Generated file outputs:

legacy

fingerprinting.json (6 more)

- fingerprinting.json - protections.json - trackers-unprotected-temporary.txt - trackers-whitelist-temporary.txt - v1/windows-config.json - v2/windows-config.json - v3/windows-config.json ⚠️ File is identical

v1/android-config.json (38 more)

- v1/android-config.json - v1/extension-brave-config.json - v1/extension-bravemv3-config.json - v1/extension-chrome-config.json - v1/extension-chromemv3-config.json - v1/extension-config.json - v1/extension-edg-config.json - v1/extension-edge-config.json - v1/extension-edgmv3-config.json - v1/extension-firefox-config.json - v1/extension-safarimv3-config.json - v1/ios-config.json - v1/macos-config.json - v2/android-config.json - v2/extension-brave-config.json - v2/extension-bravemv3-config.json - v2/extension-chrome-config.json - v2/extension-chromemv3-config.json - v2/extension-config.json - v2/extension-edg-config.json - v2/extension-edge-config.json - v2/extension-edgmv3-config.json - v2/extension-firefox-config.json - v2/extension-safarimv3-config.json - v2/ios-config.json - v2/macos-config.json - v3/android-config.json - v3/extension-brave-config.json - v3/extension-bravemv3-config.json - v3/extension-chrome-config.json - v3/extension-chromemv3-config.json - v3/extension-config.json - v3/extension-edg-config.json - v3/extension-edge-config.json - v3/extension-edgmv3-config.json - v3/extension-firefox-config.json - v3/extension-safarimv3-config.json - v3/ios-config.json - v3/macos-config.json ```diff --- v3/macos-config.json +++ v3/macos-config.json @@ -1349,9 +1349,15 @@ }, "firstPartyCookiePolicy": { "threshold": 604800, "maxAge": 604800 - } + }, + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com", ```

latest

v4/android-config.json (12 more)

- v4/android-config.json - v4/extension-brave-config.json - v4/extension-bravemv3-config.json - v4/extension-chrome-config.json - v4/extension-chromemv3-config.json - v4/extension-config.json - v4/extension-edg-config.json - v4/extension-edge-config.json - v4/extension-edgmv3-config.json - v4/extension-firefox-config.json - v4/extension-safarimv3-config.json - v4/ios-config.json - v4/macos-config.json ```diff --- v4/macos-config.json +++ v4/macos-config.json @@ -1057,9 +1057,15 @@ }, "firstPartyCookiePolicy": { "threshold": 604800, "maxAge": 604800 - } + }, + "thirdPartyCookieNames": [ + "user_id", + "__Secure-3PAPISID", + "SAPISID", + "APISID" + ] }, "exceptions": [ { "domain": "nespresso.com" ```

v4/windows-config.json

⚠️ File is identical

[jonathanKingston]

Cool cheers for making the changes and keeping those keys around. I think we can just have them sent to all clients rather than copying it all.