阅读关于强制执行SameSite更改以防止跨站点伪造的内容。
来源:https://blog.chromium.org/2019/10/developers-get-ready-for-new.html
我正在尝试将其值设置为“None”并使用如广告中所述的
我的当前
Secure
。我的当前
web.config
设置如下:<system.web>
<sessionState cookieless="UseCookies"
timeout="20"
cookieSameSite="None"
xdt:Transform="Replace"
xdt:Locator="Match(cookieless)"/>
</system.web>
但我仍然收到以下错误:
A cookie associated with a resource at `mywebsite.net` was set with `SameSite=None` but without `Secure`. A future release of Chrome will only deliver cookies marked `SameSite=None` if they are also marked `Secure`.
我该如何在上述 web.config 文件中指定 secure
特性?任何线索将不胜感激。
<httpCookies requireSSL="true">
在 web.config 中吗? - now he who must not be named.