Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-5541

SameSite cookies configuration is wrong

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • 4.11
    • Documentation / Network Edge
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • 2
    • Important
    • None
    • None
    • None
    • Rejected
    • OSDOCS Sprint 241, OSDOCS Sprint 242, OSDOCS Sprint 243, OSDOCS Sprint 244, OSDOCS Sprint 245, OSDOCS Sprint 246, OSDOCS Sprint 250, OSDOCS Sprint 251
    • 8
    • None
    • Release Note Not Required
    • N/A
    • None
    • None
    • None
    • None

      Description of problem:

      On this section: https://docs.openshift.com/container-platform/4.11/networking/routes/route-configuration.html

Documentation of router.openshift.io/cookie-same-site is wrong in a way that makes no sense. 

Reasons:
- It does not match the Mozilla documentation referred: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite
- The "Strict" and "None" modes are documented with the very same paragraph, although they are complete opposites.
- The "Lax" mode is wrongly documented, because it doesn't allow cross-site cookie transfers as per Mozilla documentation.

      Version-Release number of selected component (if applicable):

      4.11

      How reproducible:

      Always

      Steps to Reproduce:

      1. Read the docs
2.
3.

      Actual results:

      Wrong docs

      Expected results:

      Correct docs

      Additional info:

              dan_chadwick Dan Chadwick
              rhn-support-palonsor Pablo Alonso Rodriguez
              None
              None
              Hongan Li Hongan Li
              None
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: