fedcm request cookies require SameSite=None #38238
Labels
area: WebAuthn
Content:WebAPI
Web API docs
help wanted
If you know something about this topic, we would love your help!
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
MDN URL
https://developer.mozilla.org/en-US/docs/Web/API/FedCM_API/IDP_integration
What specific section or headline is this issue about?
The accounts list endpoint, The ID assertion endpoint
What information was incorrect, unhelpful, or incomplete?
'The accounts list endpoint' does mention that requests are sent with cookies, but it doesn't mention that these cookies have to be
SameSite=None'The ID assertion endpoint' doesn't mention cookies at all, but the same applies here.
What did you expect to see?
More info about which cookies are sent.
Do you have any supporting links, references, or citations?
w3c-fedid/FedCM#587
https://w3c-fedid.github.io/FedCM/#browser-api
Do you have anything more you want to share?
No response
MDN metadata
Page report details
en-us/web/api/fedcm_api/idp_integrationThe text was updated successfully, but these errors were encountered: