Add `Partitioned` cookie attribute
Kludex opened this issue · comments
Discussed in #2500
Originally posted by Flecart February 10, 2024
Currently there is experimentation for a Partitioned
attribute for the cookies. See docs here.
This attribute is important for third party cookies to work when in the future SameSite=None; Secure
cookies will stop working
For example Chrome is starting to block them for some users https://developers.google.com/privacy-sandbox/3pcd#report-issues.
Example: this is a common warning for third party cookies on Chrome:
Cookies with the SameSite=None; Secure and not Partitioned attributes that operate in cross-site contexts are third-party cookies. In future Chrome versions, reading third-party cookies will be blocked. This behavior protects user data from cross-site tracking.
Please refer to the article linked to learn more about preparing your site to avoid potential breakage.
So I would like to suggest to add this attribute for the cookie to prepare for the future blocks on standard third party cookies.
Useful links:
https://datatracker.ietf.org/doc/html/draft-cutler-httpbis-partitioned-cookies#section-2.1
https://github.com/privacycg/CHIPS
python/cpython#112713
Important
- We're using Polar.sh so you can upvote and help fund this issue.
- We receive the funding once the issue is completed & confirmed by you.
- Thank you in advance for helping prioritize & fund our backlog.
FYI, #2501 draft open, just waiting for the PR on python http
to be merged.
Closing here.
- Reason: #2501 (comment)