Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-67574

Add admin options for session cookie samesite = none / lax / strict

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 3.9
    • Fix Version/s: None
    • Component/s: Authentication
    • Difficulty:
      Easy
    • Affected Branches:
      MOODLE_39_STABLE

      Description

      Split from MDL-67175, this add back in the to ption keep and / or increase the samesite cookie security level.

      1) add new admin setting in http security

      2) also add this to the security report tool

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              brendanheywood Brendan Heywood
              Participants:
              Component watchers:
              Adrian Greeve, Jake Dallimore, Mathew May, Mihail Geshoski, Peter Dias
              Votes:
              7 Vote for this issue
              Watchers:
              12 Start watching this issue

                Dates

                Created:
                Updated: