Changes between Initial Version and Version 1 of Ticket #30250
- Timestamp:
- Mar 13, 2019, 10:07:50 AM (6 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #30250 – Description
initial v1 7 7 - SAML flow: https://github.com/IronCountySchoolDistrict/django-python3-saml/issues/1 8 8 9 Since Safari 12 is the current stable version and it's widely deployed on iOS devices, I believe the Django default for `CSRF_COOKIE_SAMESITE` and `SESSION_COOKIE_SAMESITE` should be `None`, not `Lax`. 9 Since Safari 12 is the current stable version and it's widely deployed on iOS devices, I believe the Django default for `CSRF_COOKIE_SAMESITE` and `SESSION_COOKIE_SAMESITE` should be `None`, not `Lax`. That's the more general solution and it's [https://github.com/aspnet/Announcements/issues/318 the one recommended by Microsoft to fix the similar issue on ASP.NET]. 10 10 11 11 Core developers, could you please let me know if you agree with that change, so I can make a PR updating the defaults and the documentation?