]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 5d13781) | patch
net/http: make SameSiteDefaultMode behavior match the specification
authorRoberto Clapis <roberto@golang.org>
Tue, 22 Sep 2020 15:57:06 +0000 (17:57 +0200)
committerRoberto Clapis <roberto@golang.org>
Thu, 8 Oct 2020 08:53:13 +0000 (08:53 +0000)
commit542693e00529fbb4248fac614ece68b127a5ec4d
treeab4a3ddeba31be4db46c5d7683140500c53f3c28tree
parent5d1378143bc07791296abb420df35537ad80492fcommit | diff
net/http: make SameSiteDefaultMode behavior match the specification

The current specification does not foresee a SameSite attribute without
a value. While the existing implementation would serialize SameSite in a
way that would likely be ignored by well-impelemented clients, it is
better to not rely on this kind of quirks.

Specification: https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-05#section-4.1.1

Fixes #36990

Change-Id: Ie51152741d7e84bab64d3e4e4f780286932acbde
Reviewed-on: https://go-review.googlesource.com/c/go/+/256498
Trust: Roberto Clapis <roberto@golang.org>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
doc/go1.16.html diff | blob | history
src/net/http/cookie.go diff | blob | history
src/net/http/cookie_test.go diff | blob | history
Go GOST TLS 1.3