I have…
- [ ] Checked the logs and have uploaded a log file and provided a link because I found something suspicious there. Please do not post the log file in the topic because very often something important is missing.
I’m submitting a…
- [ ] Regression (a behavior that stopped working in a new release)
- [ X ] Bug report
- [ ] Performance issue
- [ ] Documentation issue or request
Current behavior
Hi Sebastian, we are currently experiencing a bug with the login page (the bug is not always present).
We noted that after we login with the “popup” the container goes blank and stalls, we have to actually close the popup window and retry to login. We verified this problem with versions 7.3-7.5. Version 6.5 does not present this problem.
In order to verify this we have installed a test environment; the initial warning in the debugger was this:
Cookie “.AspNetCore.Antiforgery.6gqB-tCosRY” with the “SameSite” attribute value “Lax” or “Strict” was omitted because of a cross-site redirect.
and after the login popup after trying to login presents with this warning:
Cookie “INGRESSCOOKIE” does not have a proper “SameSite” attribute value. Soon, cookies without the “SameSite” attribute or with an invalid value will be treated as “Lax”. This means that the cookie will no longer be sent in third-party contexts. If your application depends on this cookie being available in such contexts, please add the “SameSite=None“ attribute to it. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite
Expected behavior
Popup window closes and executes the login.
Minimal reproduction of the problem
We have tried both in anonymous and normal versions of browser windows.
If you are not able to reproduce the problem with chrome, I noted that after logging in and then logging out try to log back in and that reproduces an error 400.
Environment
- [ X ] Self hosted with docker
- [ ] Self hosted with IIS
- [ ] Self hosted with other version
- [ ] Cloud version
Version: 7.3, 7.4, 7.5
Browser:
- [ X ] Chrome (desktop)
- [ ] Chrome (Android)
- [ ] Chrome (iOS)
- [ X ] Firefox
- [ X ] Safari (desktop)
- [ ] Safari (iOS)
- [ ] IE
- [ ] Edge
Others: