All,
we have tested a HA scenario including 2 Webgateways.

While testing we got the following issue:
- User logged into Application via Webgateway A (Application based on JavaScript Client SDK)
- Webgateway A gets switched off
- User logged out from Application via Webgateway B

When trying to re-login we got the Message "A Cooki associated with cross-site resource.." within the Chrome Logs

How can the attribute SameSite=None and Secure be set / definded ?

Attached the message from the Chrome Logs

Thanks
Dirk

Hello Dirk_Engelbart,

We're taking a look at your issue, we'll be back with an reply as soon as possible.

Leandro,
Avaya DevConnect support team.

Dirk_Engelbart wrote:
When trying to re-login we got the Message "A Cooki associated with cross-site resource.." within the Chrome Logs

Did you also get any unexpected behavior along with that error, please try with current Chrome version (80) that already implemented that policy? There shouldn't be cookies that do not comply with the policies of sameSite, but it seems that Chrome is showing that error even in cases that comply with policy.

Leandro,
Avaya DevConnect support team.

Hello Dirk_Engelbart,

Correcting my previous response, we are aware that there is an issue regarding Chrome's new same-site cookie policy, this is currently being addressed from the server side and will take effect in an upcoming update.

To clarify the situation, according to https://www.chromium.org/updates/same-site this policy will be introduced in the stable Chrome channels in a future release, not yet defined.

Leandro,
Avaya DevConnect support team.