This does set the JESSIONID to None when testing the IdP using Jetty 9.4.26. This does indeed break safari in 10.14 (None->Strict). However, as it is not setting the shib_idp_session cookie to None (only the session cookie is affected by this config change), SSO breaks
- There is no way to set a default value if a value is not added to the comments.
- There does not seem to be a way to conditionally add (e.g. by user-agent) this to the session cookie.
- Unstandardized Jetty specific approach.