Lightboard Lessons: HTTP Cookie SameSite Attribute

In this episode of Lightboard Lessons, Jason covers the SameSite attribute on HTTP cookies, and the implications for site developers and end users when Chrome begins enforcing a default behavior set to "lax" later this month in a limited rollout for Chrome v80 stable users. This should be addressed in the applications, but BIG-IP can help via iRules and local traffic policies as briefly described in the video, as well as ASM module settings and through NGINX directives.

 

 

Resources

Published Feb 06, 2020
Version 1.0

Was this article helpful?

1 Comment

  • kend's avatar
    kend
    Icon for Altostratus rankAltostratus

    How would I accomplish setting the SameSite attribute to none using a local policy on the LTM instead of an iRule?