Skip to main content

2023-11-09

Adding the setting to enable the Partitioned attribute

Background

Starting in January 2024, Chrome will discontinue third-party cookies for 1% of all Chrome users worldwide.
Previously, there was an issue with logging in on Safari (see: FAQ - Unable to Connect to the API from iPhone or Safari), but this issue will also affect Chrome.

Reference: Prepare for phasing out third-party cookies

When third-party cookies are deprecated, errors may occur in the login functionality when the domain names of the custom domain and the API domain do not match.
This can affect cases where login development is done without aligning the domains in the test environment, as well as cases where login functionality is used in production without aligning the domains.

Please be aware that this can have an impact if you are working on login development.

Response in Kuroco

We will add the setting "Use Partitioned with Cookies" in [Environment Settings] -> [Admin Panel].
When enabled, the prefix __Host- will be added to the session-related cookie names, Partitioned will be added to the cookie attribute, and Kuroco's API can be used as before (on Chrome).
※ Safari will still not be supported

Example:
rcms_api_access_token

__Host-rcms_api_access_token

Impact on Customers

When the setting for the Partitioned attribute is added, errors may occur in the login-related functionality if the domains are not aligned.
To resolve this, please enable "Use Partitioned with Cookies" and perform the login again (not the login to the admin panel, but the action of creating a login session with cookies through the API).

※ There is no impact if cookies are not used as security tokens.
※ There is also possible to check the "Use Partitioned in Cookies" checkbox in the production environment. This will not affect the operation, but will improve the security rating.

Planned Date for Endpoint Addition

RC: November 27, 2023 (Monday)
Stable: Mid-January 2024

The specific date and time for the official version cannot be chosen by the user.
By switching to the RC version, you can verify the functionality at any desired timing.

Contact

If you have any further questions regarding this matter, please feel free to contact Kuroco Support.

Support

If you have any other questions, please contact us or check out Our Slack Community.

Contact form
Join Kuroco Slack community