Home Explore 引导页 在线工具 Blog
Register Sign In
Pchen0
/
electron
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

fix: change cookie default from NO_RESTRICTION to LAX_MODE (#31839)

* fix: change default from NO_RESTRICTION to LAX_MODE

* chore: update cookie docs, redirect tests

Co-authored-by: VerteDinde <[email protected]>
trop[bot] 3 years ago
parent
e8ba44c632
commit
55a293cfaf
3 changed files with 6 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      docs/api/cookies.md
  2. 1 1
      shell/browser/api/electron_api_cookies.cc
  3. 4 0
      spec-main/api-net-spec.ts

+ 1 - 1
docs/api/cookies.md
View File 

@@ -99,7 +99,7 @@ the response.
 
   * `expirationDate` Double (optional) - The expiration date of the cookie as the number of
 
     seconds since the UNIX epoch. If omitted then the cookie becomes a session
 
     cookie and will not be retained between sessions.
 
-  * `sameSite` String (optional) - The [Same Site](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#SameSite_cookies) policy to apply to this cookie.  Can be `unspecified`, `no_restriction`, `lax` or `strict`.  Default is `no_restriction`.
 
+  * `sameSite` String (optional) - The [Same Site](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#SameSite_cookies) policy to apply to this cookie.  Can be `unspecified`, `no_restriction`, `lax` or `strict`.  Default is `lax`.
 
 
 Returns `Promise<void>` - A promise which resolves when the cookie has been set

+ 1 - 1
shell/browser/api/electron_api_cookies.cc
View File 

@@ -192,7 +192,7 @@ std::string InclusionStatusToString(net::CookieInclusionStatus status) {
 
 std::string StringToCookieSameSite(const std::string* str_ptr,
 
                                    net::CookieSameSite* same_site) {
 
   if (!str_ptr) {
 
-    *same_site = net::CookieSameSite::NO_RESTRICTION;
 
+    *same_site = net::CookieSameSite::LAX_MODE;
 
     return "";
 
   }
 
   const std::string& str = *str_ptr;

+ 4 - 0
spec-main/api-net-spec.ts
View File 

@@ -759,14 +759,18 @@ describe('net module', () => {
 
           const cookieLocalVal = `${Date.now()}-local`;
 
           const localhostUrl = serverUrl.replace('127.0.0.1', 'localhost');
 
           expect(localhostUrl).to.not.equal(serverUrl);
 
+          // cookies with lax or strict same-site settings will not
 
+          // persist after redirects. no_restriction must be used
 
           await Promise.all([
 
             sess.cookies.set({
 
               url: serverUrl,
 
               name: 'wild_cookie',
 
+              sameSite: 'no_restriction',
 
               value: cookie127Val
 
             }), sess.cookies.set({
 
               url: localhostUrl,
 
               name: 'wild_cookie',
 
+              sameSite: 'no_restriction',
 
               value: cookieLocalVal
 
             })
 
           ]);