This is part of a solution towards allowing Spark to serve cookies with the "SameSite" property.
Google Chrome 80, released in February 2020, is now treating the lack of a "SameSite" property in a cookie as equivalent to "SameSite: Lax", instead of "SameSite: None". This breaks functionality in some situations.
A fundamental problem for Java-based web apps is that the Servlet API doesn't yet support the "SameSite" cookie attribute.
Recent Jetty updates have added different workarounds to this problem. By updating the embedded Jetty to 9.4.27, these workarounds become available to Spark apps.
This is part of a solution towards allowing Spark to serve cookies with the "SameSite" property.
Google Chrome 80, released in February 2020, is now treating the lack of a "SameSite" property in a cookie as equivalent to "SameSite: Lax", instead of "SameSite: None". This breaks functionality in some situations.
A fundamental problem for Java-based web apps is that the Servlet API doesn't yet support the "SameSite" cookie attribute.
Recent Jetty updates have added different workarounds to this problem. By updating the embedded Jetty to 9.4.27, these workarounds become available to Spark apps.