Question 5 Replies 462 Views × Close popover Kevin RAMAGE (KevinR13) Sopra Sopra FR View Profile Send Message KevinR13 Member since 2017 2 posts Sopra Posted: January 14, 2020 Last activity: March 30, 2020 Posted: 14 Jan 2020 7:54 EST Last activity: 30 Mar 2020 19:54 EDT Closed How to implement sameSite cookie flag in Pega 7.2.2 ? Hello, We will work on Pega 7.2.2 and we have a mashup implemented in production. Some users use Google Chrome browser and in February 2020, Google will implement the new secure cookie model:https://blog.chromium.org/2019/10/developers-get-ready-for-new.html A new flag must be present in cookie to enable the cookie transmission between the same domain when the users not use the same web site. So I want to know how to implement it in Pega ? Regards, Pega Platform Low-Code App Development Security × Close popover Facebook Twitter Linkedin Email Copy Link Copied! Moderation Team has archived post, learn more × Close popover This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question. Posted: 1 year ago Posted: 5 Feb 2020 15:12 EST × Close popover Harish Gunneri (Harish_GCS) PEGA Senior Software Solutions Engineer Pegasystems Inc. US View Profile Send Message Harish_GCS PEGA replied to KevinR13 The support for the usage of samesite cookie attribute has been added from 8.3 Pega version onwards. You need to upgrade to the latest version to get support. https://community.pega.com/sites/default/files/help_v83/procomhelpmain.htm#security/configuring-cross-site-request-forgery-settings-tsk.htm Posted: 1 year ago Posted: 6 Feb 2020 10:54 EST × Close popover Sridhar LS (SridharLS) BAH Sridhar LS BAH US View Profile Send Message SridharLS BAH replied to Harish_GCS Hi Harish, The added support in v8.3 only provides options to set the flag to Lax or Strict, but the chrome 80 update would need Pega to set the flag to 'none' for the mashup to work. Isn't that so? Posted: 1 year ago Posted: 17 Mar 2020 17:16 EDT × Close popover Stojancho Stamkov (StojanchoS) Vodafone Vodafone NL View Profile Send Message StojanchoS Vodafone replied to SridharLS That is correct. We were told by Pega Support that SameSite=None is supported from Pega 8.3.2. Posted: 1 year ago Posted: 18 Mar 2020 5:09 EDT × Close popover Alberto Hernandez (herna) PEGA Senior System Architect Pegasystems Inc. ES View Profile Send Message herna PEGA replied to StojanchoS I don't see that option in Pega 8.4 , I only see Lax and Strict. Posted: 1 year ago Posted: 30 Mar 2020 19:54 EDT × Close popover Harish Gunneri (Harish_GCS) PEGA Senior Software Solutions Engineer Pegasystems Inc. US View Profile Send Message Harish_GCS PEGA replied to herna Hi Herna, The option is not available in 8.4 but should be available in 8.4.1. Currently, it's included in 8.3.2 & 8.2.6. Look at the solution mentioned in the below article:- https://community.pega.com/knowledgebase/articles/pega-web-mashup/troubleshooting-corb-error-pega-web-mashups-chrome-80-samesite-cookies Let me know if that helps!