Disable SameSite for incompatible clients.

jotes / django-cookies-samesite

This repository contains a middleware which automatically sets SameSite attribute for session and csrf cookies in legacy versions of Django.

BSD 3-Clause "New" or "Revised" License

49 stars 35 forks source link

Disable SameSite for incompatible clients. #22

Closed abdul-rafiu closed 4 years ago

abdul-rafiu commented 4 years ago

django-cookies-samesite version: 0.5.1
Django version: all
Python version: all

Description

Google released the incompatible client list for SameSite policy. Currently, we are disabling only for Chrome version 51 - 66. We have to extend this to all the incompatible clients. Check the link given below.

Incompatible Clients

abdul-rafiu commented 4 years ago

Created PR - Pull Reruest

jotes commented 4 years ago

Fixed in https://github.com/jotes/django-cookies-samesite/pull/21