fixup! Remove kSameSiteByDefaultCookies and kCookiesWithoutSameSiteMustBeSecure

2026-04-10 03:01:51 -04:00 · 2021-08-18 11:12:56 -07:00
parent 1c4f0c6023
commit d0a1a8b51a
1 changed files with 1 additions and 1 deletions
--- a/docs/api/cookies.md
+++ b/docs/api/cookies.md
@@ -93,7 +93,7 @@ the response.
  * `domain` String (optional) - The domain of the cookie; this will be normalized with a preceding dot so that it's also valid for subdomains. Empty by default if omitted.
  * `path` String (optional) - The path of the cookie. Empty by default if omitted.
  * `secure` Boolean (optional) - Whether the cookie should be marked as Secure. Defaults to
-    false.
+    false unless [Same Site=None](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite#samesitenone_requires_secure) attribute is used.
  * `httpOnly` Boolean (optional) - Whether the cookie should be marked as HTTP only.
    Defaults to false.
  * `expirationDate` Double (optional) - The expiration date of the cookie as the number of