Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info

This does set the JESSIONID to None when testing the IdP using Jetty 9.4.26. This does indeed break safari in 10.14 (None->Strict). However, as it is not setting the shib_idp_session cookie to None (only the session cookie is affected by this config change), SSO breaks 


Issues:

  • There is no way to set a default value if a value is not added to the comments.
  • There does not seem to be a way to conditionally add (e.g. by user-agent) this to the session cookie.
  • Unstandardized Jetty specific approach.

...