Springboot JSESSIONID 设置 SameSite 属性为 NONE

最新推荐文章于 2024-07-02 17:57:28 发布

starxg

最新推荐文章于 2024-07-02 17:57:28 发布

阅读量5.7k

点赞数 5

分类专栏： Java 文章标签： java spring boot cookie samesite session

本文链接：https://blog.csdn.net/qq_38132283/article/details/117462126

版权

Java 专栏收录该内容

13 篇文章 0 订阅

订阅专栏

修复：This set-cookie didn't specify a "SameSite" attribute and was defaulted to "SameSite=Lax" and broke the same rules specified in the SameSiteLax value

application.yml

server:
  servlet:
    session:
      cookie:
        secure: true

@Configuration
public class MvcConfig implements WebMvcConfigurer {
    /**
     * 设置Cookie的SameSite
     */
    @Bean
    public TomcatContextCustomizer sameSiteCookiesConfig() {
        return context -> {
            final Rfc6265CookieProcessor cookieProcessor = new Rfc6265CookieProcessor();
            cookieProcessor.setSameSiteCookies(SameSiteCookies.NONE.getValue());
            context.setCookieProcessor(cookieProcessor);
        };
    }

}

我的Springboot 版本

<parent>
	<groupId>org.springframework.boot</groupId>
	<artifactId>spring-boot-starter-parent</artifactId>
	<version>2.2.2.RELEASE</version>
	<relativePath/>
</parent>