[
https://issues.apache.org/jira/browse/KNOX-3173?focusedWorklogId=976595&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-976595
]
ASF GitHub Bot logged work on KNOX-3173:
----------------------------------------
Author: ASF GitHub Bot
Created on: 28/Jul/25 14:35
Start Date: 28/Jul/25 14:35
Worklog Time Spent: 10m
Work Description: hanicz opened a new pull request, #1067:
URL: https://github.com/apache/knox/pull/1067
## What changes were proposed in this pull request?
[KNOX-3148](https://github.com/apache/knox/pull/1042) made the SameSite
attribute configurable for the pac4j session cookies and introduced `Strict` as
default value. However in same cases this might break the pac4j workflow. This
change removes the default `Strict` value however it is still configurable if
the user wants that.
## How was this patch tested?
Unit tests.
Tested on a live cluster where the workflow was broken before.
Issue Time Tracking
-------------------
Worklog Id: (was: 976595)
Remaining Estimate: 0h
Time Spent: 10m
> Remove default SameSite value for pac4j session cookies
> -------------------------------------------------------
>
> Key: KNOX-3173
> URL: https://issues.apache.org/jira/browse/KNOX-3173
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Affects Versions: 2.1.0
> Reporter: Tamás Hanicz
> Assignee: Tamás Hanicz
> Priority: Critical
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Pac4j flow cloud break if the Strict default samesite value is set for the
> pac4j session cookies. With this change the SameSite attribute is set only if
> it is provided in the topology.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
