Skip to content

Tag: csrf

SameSite cookie in Java application

Do you know any Java cookie implementation which allows to set a custom flag for cookie, like SameSite=strict? It seems that javax.servlet.http.Cookie has a strictly limited set of flags which can be added. Answer I am not a JEE expert, but I think that because that cookie property is a somewhat new invention, you cannot expect it to be present
