ASP.NET Blog | Upcoming SameSite Cookie Changes in ASP.NET and ASP.NET Core

added by DotNetKicks
10/18/2019 5:39:26 PM


Barry SameSite is a 2016 extension to HTTP cookies intended to mitigate cross site request forgery (CSRF). The original design as was a feature web sites would opt into by adding the new parameters, not setting the SameSite property, or setting it to value of Laxindicated the cookie should be sent on navigation within the same site, or through GET navigation to your site from other sites.