问题
Chrome is giving me the following warning:
A cookie associated with a cross-site resource at http://quilljs.com/ was set without the
SameSiteattribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set withSameSite=NoneandSecure.
Note that quilljs.com is a 3rd party domain.
I have seen these questions... the answers and comments on both questions are similar, some provide an answer like this:
response.setHeader("Set-Cookie", "HttpOnly;Secure;SameSite=Strict");
While others say something like this:
nothing to do with your code. its something their web servers will have to support.
I am not sure if this is something that I need to fix in my website, or it's the 3rd party who needs to fix their library at their end?
回答1:
The warning messages specifically call out the domain that's responsible for the cookie. In this case, it's quilljs.com. If that's your domain, then you need to update the cookie there. If it's a third-party service that you rely on, then it's that service that needs to update their cookies.
Edit More context is available at https://web.dev/samesite-cookies-explained and https://web.dev/samesite-cookie-recipes.
来源:https://stackoverflow.com/questions/58830297/a-cookie-associated-with-a-cross-site-resource-was-set-without-the-samesite-at