same-site-cookie-attribute.json 4.9 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279
  1. {
  2. "title":"'SameSite' cookie attribute",
  3. "description":"Same-site cookies (n\u00e9e \"First-Party-Only\" (n\u00e9e \"First-Party\")) allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.",
  4. "spec":"https://tools.ietf.org/html/draft-west-first-party-cookies-06",
  5. "status":"other",
  6. "links":[
  7. {
  8. "url":"http://www.sjoerdlangkemper.nl/2016/04/14/preventing-csrf-with-samesite-cookie-attribute/",
  9. "title":"Preventing CSRF with the same-site cookie attribute"
  10. },
  11. {
  12. "url":"https://bugzilla.mozilla.org/show_bug.cgi?id=795346",
  13. "title":"Mozilla Bug #795346: Add SameSite support for cookies"
  14. }
  15. ],
  16. "bugs":[
  17. ],
  18. "categories":[
  19. "Other"
  20. ],
  21. "stats":{
  22. "ie":{
  23. "5.5":"n",
  24. "6":"n",
  25. "7":"n",
  26. "8":"n",
  27. "9":"n",
  28. "10":"n",
  29. "11":"n"
  30. },
  31. "edge":{
  32. "12":"n",
  33. "13":"n",
  34. "14":"n"
  35. },
  36. "firefox":{
  37. "2":"n",
  38. "3":"n",
  39. "3.5":"n",
  40. "3.6":"n",
  41. "4":"n",
  42. "5":"n",
  43. "6":"n",
  44. "7":"n",
  45. "8":"n",
  46. "9":"n",
  47. "10":"n",
  48. "11":"n",
  49. "12":"n",
  50. "13":"n",
  51. "14":"n",
  52. "15":"n",
  53. "16":"n",
  54. "17":"n",
  55. "18":"n",
  56. "19":"n",
  57. "20":"n",
  58. "21":"n",
  59. "22":"n",
  60. "23":"n",
  61. "24":"n",
  62. "25":"n",
  63. "26":"n",
  64. "27":"n",
  65. "28":"n",
  66. "29":"n",
  67. "30":"n",
  68. "31":"n",
  69. "32":"n",
  70. "33":"n",
  71. "34":"n",
  72. "35":"n",
  73. "36":"n",
  74. "37":"n",
  75. "38":"n",
  76. "39":"n",
  77. "40":"n",
  78. "41":"n",
  79. "42":"n",
  80. "43":"n",
  81. "44":"n",
  82. "45":"n",
  83. "46":"n",
  84. "47":"n",
  85. "48":"n",
  86. "49":"n",
  87. "50":"n",
  88. "51":"n",
  89. "52":"n",
  90. "53":"n"
  91. },
  92. "chrome":{
  93. "4":"n",
  94. "5":"n",
  95. "6":"n",
  96. "7":"n",
  97. "8":"n",
  98. "9":"n",
  99. "10":"n",
  100. "11":"n",
  101. "12":"n",
  102. "13":"n",
  103. "14":"n",
  104. "15":"n",
  105. "16":"n",
  106. "17":"n",
  107. "18":"n",
  108. "19":"n",
  109. "20":"n",
  110. "21":"n",
  111. "22":"n",
  112. "23":"n",
  113. "24":"n",
  114. "25":"n",
  115. "26":"n",
  116. "27":"n",
  117. "28":"n",
  118. "29":"n",
  119. "30":"n",
  120. "31":"n",
  121. "32":"n",
  122. "33":"n",
  123. "34":"n",
  124. "35":"n",
  125. "36":"n",
  126. "37":"n",
  127. "38":"n",
  128. "39":"n",
  129. "40":"n",
  130. "41":"n",
  131. "42":"n",
  132. "43":"n",
  133. "44":"n",
  134. "45":"n",
  135. "46":"n",
  136. "47":"n",
  137. "48":"n",
  138. "49":"n",
  139. "50":"n",
  140. "51":"y",
  141. "52":"y",
  142. "53":"y",
  143. "54":"y",
  144. "55":"y",
  145. "56":"y",
  146. "57":"y"
  147. },
  148. "safari":{
  149. "3.1":"n",
  150. "3.2":"n",
  151. "4":"n",
  152. "5":"n",
  153. "5.1":"n",
  154. "6":"n",
  155. "6.1":"n",
  156. "7":"n",
  157. "7.1":"n",
  158. "8":"n",
  159. "9":"n",
  160. "9.1":"n",
  161. "10":"n",
  162. "TP":"n"
  163. },
  164. "opera":{
  165. "9":"n",
  166. "9.5-9.6":"n",
  167. "10.0-10.1":"n",
  168. "10.5":"n",
  169. "10.6":"n",
  170. "11":"n",
  171. "11.1":"n",
  172. "11.5":"n",
  173. "11.6":"n",
  174. "12":"n",
  175. "12.1":"n",
  176. "15":"n",
  177. "16":"n",
  178. "17":"n",
  179. "18":"n",
  180. "19":"n",
  181. "20":"n",
  182. "21":"n",
  183. "22":"n",
  184. "23":"n",
  185. "24":"n",
  186. "25":"n",
  187. "26":"n",
  188. "27":"n",
  189. "28":"n",
  190. "29":"n",
  191. "30":"n",
  192. "31":"n",
  193. "32":"n",
  194. "33":"n",
  195. "34":"n",
  196. "35":"n",
  197. "36":"n",
  198. "37":"n",
  199. "38":"n",
  200. "39":"y",
  201. "40":"y",
  202. "41":"y",
  203. "42":"y",
  204. "43":"y"
  205. },
  206. "ios_saf":{
  207. "3.2":"n",
  208. "4.0-4.1":"n",
  209. "4.2-4.3":"n",
  210. "5.0-5.1":"n",
  211. "6.0-6.1":"n",
  212. "7.0-7.1":"n",
  213. "8":"n",
  214. "8.1-8.4":"n",
  215. "9.0-9.2":"n",
  216. "9.3":"n",
  217. "10-10.1":"n"
  218. },
  219. "op_mini":{
  220. "all":"n"
  221. },
  222. "android":{
  223. "2.1":"n",
  224. "2.2":"n",
  225. "2.3":"n",
  226. "3":"n",
  227. "4":"n",
  228. "4.1":"n",
  229. "4.2-4.3":"n",
  230. "4.4":"n",
  231. "4.4.3-4.4.4":"n",
  232. "53":"y"
  233. },
  234. "bb":{
  235. "7":"n",
  236. "10":"n"
  237. },
  238. "op_mob":{
  239. "10":"n",
  240. "11":"n",
  241. "11.1":"n",
  242. "11.5":"n",
  243. "12":"n",
  244. "12.1":"n",
  245. "37":"n"
  246. },
  247. "and_chr":{
  248. "54":"y"
  249. },
  250. "and_ff":{
  251. "50":"n"
  252. },
  253. "ie_mob":{
  254. "10":"n",
  255. "11":"n"
  256. },
  257. "and_uc":{
  258. "11":"n"
  259. },
  260. "samsung":{
  261. "4":"n"
  262. }
  263. },
  264. "notes":"This feature is backwards compatible. Browsers not supporting this feature will simply use the cookie as a regular cookie. There is no need to deliver different cookies to clients.",
  265. "notes_by_num":{
  266. },
  267. "usage_perc_y":49.12,
  268. "usage_perc_a":0,
  269. "ucprefix":false,
  270. "parent":"",
  271. "keywords":"security,cookies,cookie,csrf",
  272. "ie_id":"",
  273. "chrome_id":"4672634709082112",
  274. "firefox_id":"",
  275. "webkit_id":"",
  276. "shown":true
  277. }