react-google-recaptcha icon indicating copy to clipboard operation
react-google-recaptcha copied to clipboard

Published 20 hours ago verified publisher icon dozoisch

Problem with Cookies, SameSite property

Open rogefm opened this issue 2 years ago • 4 comments

react-google-recaptcha version: 2.1.0 react-async-script version: ^1.1.1

Problem

In chrome, inside of inspect element, there is a section for issues, where it creates some issue of your website. And It created this issue:

Indicate whether to send a cookie in a cross-site request by specifying its SameSite attribute

Because a cookie’s SameSite attribute was not set or is invalid, it defaults to SameSite=Lax, which prevents the cookie from being sent in a cross-site request. This behavior protects user data from accidentally leaking to third parties and cross-site request forgery.

Resolve this issue by updating the attributes of the cookie:

  • Specify SameSite=None and Secure if the cookie should be sent in cross-site requests. This enables third-party use.
  • Specify SameSite=Strict or SameSite=Lax if the cookie should not be sent in cross-site requests.

Affect Resources 12 cookies (It is complicated to show these values) 30 requests (It is complicated to show these values)

Screenshot from 2021-07-21 14-24-43

Probably we are forgetting to pass the SameSite = none in our fetch. Sorry if this issue is incomplete, but just ask to me and I will look for the missing information.

rogefm avatar Jul 21 '21 17:07 rogefm

I also got this problem. Have you found a proper solution to this problem?

konstantinschuette avatar Sep 23 '21 14:09 konstantinschuette

+1, same for me. Probably will use diffrent solution..

ghost avatar Oct 11 '21 11:10 ghost

Hi, any update for this matter?

McSam94 avatar May 13 '22 23:05 McSam94

Any updates?

hopingsteam avatar Jun 30 '23 16:06 hopingsteam