Ability to skip cookie SameSite option

(3 posts) (2 voices)
  • Started by ken@pesttrend.com
  • Latest reply from ken@pesttrend.com


No tags yet.

  1. ken@pesttrend.com, Member

    Ability to skip cookie SameSite option mentioned in release notes for 5.9

    Where can I find out how this is done ?

    Can't find any documentation on this or examples.

  2. myDBR Team, Key Master

    You can override the default cookie settings in user/defaults.php. The default setting (from defaults.php) are:

    $mydbr_defaults['cookie'] = [
    'host' => null,
    'secure_only' => false,
    'force_secure_only_on_https' => true,
    'samesite' => 'None',
    'samesite_on_http' => 'Lax',
    'samesite_secure' => null,
    'https_http_separate_cookie' => true

    myDBR Team

  3. ken@pesttrend.com, Member

    Ok thanks for that. I tried it but it didn't work but when I modified the Apache server config to do the same thing that worked.

    For anyone else with similar issue I added the following to the Apache http.conf file

    Header edit Set-Cookie ^(.*)$ $1;HttpOnly;Secure;SameSite=None


You must log in to post.