Y
Hacker News
new
|
ask
|
show
|
jobs
by
snak
2315 days ago
Well, for a long time there was no SameSite browser support for cookies, CSRF was a vulnerability (excluding STP and other techniques to avoid it).
1 comments
tmikaeld
2315 days ago
You're right, SameSite became properly supported just a year ago for the majority of browsers.
Reference:
https://caniuse.com/#search=SameSite
link
Reference:
https://caniuse.com/#search=SameSite