The same-site attribute was recently introduced in the cookie class to accommodate new requirements in the browser communities (Mozilla initially). The start-session function sets an acceptor's cookie same-site attribute to NIL without an easy way to modify this. Setting the same-site attribute to default-cookie-same-site instead leaves the behavior unchanged, yet allows one to change the default behavior more easily.
The same-site attribute was recently introduced in the cookie class to accommodate new requirements in the browser communities (Mozilla initially). The start-session function sets an acceptor's cookie same-site attribute to NIL without an easy way to modify this. Setting the same-site attribute to default-cookie-same-site instead leaves the behavior unchanged, yet allows one to change the default behavior more easily.