Auth0 Home Blog Docs

Upcoming Browser Behavior Changes: What Developers Need to Know

Learn about upcoming changes to browser cookie behavior that may make your web applications incompatible.

Read on :cookie:

Brought to you by Filip Skokan :man_technologist:t2:

1 Like

What do you think about browser behavior changes? Are you getting ready?

1 Like

Ramiro, I think that this is by far the easiest to digest article on this topic I’ve come across in our mitigation of the SameSite Doomsday. The high level approach that is included with the usage of dual cookies is brilliant in its elegance and simplicity while still providing 100% browser compatibility coverage.

In the spirit of helping folks out who are also facing this issue internally, I’d also propose another mechanism for implementing Auth0’s dual cookie solution: using a proxy to inject and then coalesce cookies. I’ve written up a blog post of how we implemented the solution for our application in IIS: https://charliedigital.com/2020/01/22/adventures-in-single-sign-on-samesite-doomsday/

My hope is that this information finds its audience before folks actually run into issues in production.

Cheers!