@tsteur opened this Pull Request on January 23rd 2020 Member

fix https://github.com/matomo-org/matomo/issues/15414

Worked for me after enabling embed framed pages. It was setting the None as SameSite though instead of Lax and I was able to view reports within the frame etc.

Used this:

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
</head>
<body>
<iframe width="100%" height="600" src="https://example.com/index.php?module=Login&action=logme&login=root&password=TOKEN"></iframe>

</body>
</html>
@dm577 commented on January 23rd 2020

Can this be tested on Chrome 80 with the "Samesite by default cookies" and "Cookies without Samesite must be secure" flags set as enabled? That is what the default behavior will be when Chrome 80 is launched on Feb 4 and if a cookie is set with SameSite=none without being marked as Secure, it will be blocked.

@diosmosis commented on January 29th 2020 Member

Works for me after loading on demo2, both w/ and without the settings mentioned by @dm577

This Pull Request was closed on January 29th 2020
Powered by GitHub Issue Mirror