Fix SameSite=None being incompatible in old browsers/devices
Fix SameSite=None
being incompatible in old browsers/devices
- We use the
should-send-same-site-none
package to conditionally removeSameSite=None
from cookies when we detect that a user agent isn't supported.
Testing
- Tested on an old iPhone 6 with iOS 12.4.8
✅ - Confirmed on beta-staging that the
b_session
andb_auth
cookies do not haveSameSite
- Confirmed on beta-staging that the
- Tested that sign in still works for a modern browser
Fix https://gitlab.com/gitlab-org/gitter/webapp/-/issues/2579
Edited by Eric Eastwood