A cookie associated with a cross-site resource at http://cloudflare.com/ was set without the `SameSite` attribute

haduc.it · June 7, 2019, 6:51am

I’m using Chrome Canary (Version 77.0) and it warned me!
[Deprecation] A cookie associated with a cross-site resource at http://Cloudflare.com/ was set without the SameSite attribute. Starting in M77, Chrome will only deliver cookies with cross-site requests if they are set with SameSite=None. You can review cookies in developer tools under Application>Storage>Cookies and see more details at Chrome Platform Status.

Is this a security error caused by Cloudflare?

cloonan · December 19, 2019, 5:57pm

Regarding adding the attribute SameSite to the cfduid cookie, this is now added to the __cfduid cookie and will be present on all Dynamic resources.

For any cached resource which is using this cookie, you will need to Purge the cache.

Topic		Replies	Views
Understanding the Cloudflare Cookie (SameSite and Secure Warning) General	1	5024	November 4, 2019
DevTools: cloudflare.com/ was set without the `SameSite` attribute General	2	4120	March 5, 2020
Cookie error in chrome General	1	3763	September 8, 2020
Google Chrome warning about Cloudflare cookie Developers	94	31876	January 2, 2022
Cloudflare.com cookie blocked because SameSite=None missing General	2	5346	March 26, 2020

A cookie associated with a cross-site resource at http://cloudflare.com/ was set without the `SameSite` attribute

Related topics