Closed simonelbaz closed 3 weeks ago
[Triage] Hi @simonelbaz, thank you for filing this issue. This seems like something that could definitely be made configurable. Feel free to open a PR for this pull request and we can review it quickly.
Hi, this is configurable today. Have you tried adding opensearch_security.cookie.isSameSite: Strict
to opensearch_dashboards.yml
file and restarting dashboards?
During
proxy
authentication flow, thesecurity_authentication
cookie lacks SameSite attribute.A warning is emitted by the Console browser tab:
What solution would you like? Would it be possible to set SameSite to 'Strict' or make it available as a parameter ?
What alternatives have you considered? This is warning. So that's OK.