Same-site Cookies


Same-site Cookies is an Internet Draft which defines a "SameSite" cookie attribute which allows servers to assert that a cookie ought not to be sent along with cross-domain HTTP Requests.

Same-site Cookies is an attempt to limit the exploit of Cross-site request forgery and Data Leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable DNS Domain.

Same-site Cookies is used in regards to the concept of Web Origin

More Information#

There might be more information for this subject on one of the following: