[jetty-users] SameSite to STRICT

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[jetty-users] SameSite to STRICT

From: Sai Sankar Challa <saisankar.c@xxxxxxxxxxxxxxxx>
Date: Wed, 14 Jul 2021 16:07:13 +0000
Accept-language: en-GB, en-US
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=motivitylabs.com; dmarc=pass action=none header.from=motivitylabs.com; dkim=pass header.d=motivitylabs.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=wvgpjLItE7SO2LPc5BU1tRi4KfsV4aqrUdq6HMrNeTo=; b=JkqXq747aozO9CgY0crkNK/5EnX1kWFIsIT5zvCsOAcNXJV23ZAEz6CLZin8e6aIU9h79YXD9hy2eQv4F5YwAjTkEtQfGdbTFxT1GjdeJxcqy1b2E/HJ3IDtPGu3ZxeuQhNVGWD3azNo+b8DuzGoEsV3y2oqhdIMz/FB5PojjQjKV4SrbwXVWWiobTKjmcfNsmsKKgQqtVVdl8ebC+h1K3W6BjL+VxPEfK60Nkl8TqNpw9sFkbwwn14cjJM0O3nX09AE/mBYRW92i3pR+Pk9I1NwzR+TFtDTxo/BJ9w9Qze6cWV6YkJWCNIip98DOzWR+rMJ8gm8TFOs0azSP7o4pA==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=RnMJ3HW1736S21jw4Xt5F+C7o8xzkgaQYI59KxaC7xyvLEQjj7gQ9G/42XYShM83OOAWzmcSo38BNxHZeoCVrP3EJo6HzR0U77HO1qgxs45/PwZG+SaTYKKPJOPBDF3tEtQOGK6NyFgxy15oZQ3lbhvwTUcw7fXnH1ajS3fOJL2q0axUqRVbZadjy6Cy2x17m3RwjzKmwNyjsp3aIu+a9gbjivHNA5wq8FSgWkJfI66Ii5yVim4WxkRBF9ZJ0mW+rf1IzMndbzdYVUL+gyS0NgnHuBR2b6sfF0hJC4nsBAHABcrB0S+2Bqd/JT3UAOIdjOs85Fos9ACsx4a5LVVHUw==
Delivered-to: jetty-users@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jetty-users/>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>
Thread-index: Add4tdcAS9eH5mhgQFikE+fa8TbQAA==
Thread-topic: SameSite to STRICT

Hi Team

We upgraded our Jetty version to 9.4.38.v20210224 and we want to Set 'SameSite' attribute to 'Strict' in JSESSIONID for our portal security .

We made the code changes as per below in our web.xml and still not seeing any difference.

<session-config>

<cookie-config>

<http-only>false</http-only>

<secure>false</secure>

<comment>__SAME_SITE_STRICT__</comment>

</cookie-config>

</session-config>

Browser Cookie

Can you please through some idea to get this done .

Thanks

Sai

Follow-Ups:
- Re: [jetty-users] SameSite to STRICT
  - From: Joakim Erdfelt

Prev by Date: Re: [jetty-users] Building response for request that is sleeping
Next by Date: Re: [jetty-users] SameSite to STRICT
Previous by thread: [jetty-users] Building response for request that is sleeping
Next by thread: Re: [jetty-users] SameSite to STRICT
Index(es):
- Date
- Thread

Breadcrumbs