Om de ûnderfining foar jo te ferbetterjen is tydlik de funksjonaliteit dan dizze website troch ûnderhâldswurk beheind. Wannear in artikel jo probleem net oplost en jo in fraach stelle wolle, kin ús stipemienskip jo helpe yn @FirefoxSupport op Twitter en /r/firefox op Reddit.

Sykje yn Support

Mij stipescams. Wy sille jo nea freegje in telefoannûmer te beljen, der in sms nei ta te stjoeren of persoanlike gegevens te dielen. Meld fertochte aktiviteit mei de opsje ‘Misbrûk melde’.

Mear ynfo

Dizze konversaasje is argivearre. Stel in nije fraach as jo help nedich hawwe.

Unable to login after Firefox updated to 96.0

  • 3 antwurd
  • 1 hat dit probleem
  • 1 werjefte
  • Lêste antwurd fan CraigS26

more options

Hi Team,

After updating to Firefox version 96.0, we are unable to login to our application, after pressing login button our login page is getting refreshed. From warnings it looks like a Cookies issue. As 96 version has SameSite:Lax as default but we are setting SameSite:None; secure; but it is not working.

Kindly help us.

Thanks & Regards

Hi Team, After updating to Firefox version 96.0, we are unable to login to our application, after pressing login button our login page is getting refreshed. From warnings it looks like a Cookies issue. As 96 version has SameSite:Lax as default but we are setting SameSite:None; secure; but it is not working. Kindly help us. Thanks & Regards

Keazen oplossing

projecthelpdesk2014 said

. . . . we are unable to login to our application

What application are you talking about? Or did you mean a website?


Make sure you are not blocking content.

https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop also see https://blog.mozilla.org/security/2021/03/23/introducing-smartblock/

https://support.mozilla.org/en-US/kb/smartblock-enhanced-tracking-protection


Diagnose Firefox issues using Troubleshoot(Safe) Mode {web link}

A small dialog should appear. Click Start In Troubleshoot(Safe) Mode (not Refresh). Is the problem still there?


Many site issues can be caused by corrupt cookies or cache.

Warning ! ! This will log you out of sites you're logged in to. You may also lose any settings for that website.

Dit antwurd yn kontekst lêze 👍 1

Alle antwurden (3)

more options

Keazen oplossing

projecthelpdesk2014 said

. . . . we are unable to login to our application

What application are you talking about? Or did you mean a website?


Make sure you are not blocking content.

https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop also see https://blog.mozilla.org/security/2021/03/23/introducing-smartblock/

https://support.mozilla.org/en-US/kb/smartblock-enhanced-tracking-protection


Diagnose Firefox issues using Troubleshoot(Safe) Mode {web link}

A small dialog should appear. Click Start In Troubleshoot(Safe) Mode (not Refresh). Is the problem still there?


Many site issues can be caused by corrupt cookies or cache.

Warning ! ! This will log you out of sites you're logged in to. You may also lose any settings for that website.

more options

Thank you the prompt response.

We have a Spring based Web application (version 3.1.5.RELEASE) and is running on a Glassfish server. After the recent update of firefox version(96.0) we are unable to login to our website. It is secured site(HTTPS) and a third party service(The third party service is called upon login and is HTTP based.) integration is failing as firefox is restricting access of cross-site cookies as SameSite=Lax.We tried to fix this by setting (in firefox config) network.cookie.sameSite.laxByDefault as false. But it didn't work.

We have also changed our code for setting cookies to HttpServletResponse using: httpServletResponse.setHeader("Set-Cookie: flavor=choco; SameSite=None; Secure", header) to no avail. On inspecting cookie in firefox cookie storage it still shows SameSite:Lax. It seems like this setHeader() is also not working.

What other things we can try to fix this either at browser level or at code level?

more options

projecthelpdesk2014 said

Thank you the prompt response. We have a Spring based Web application (version 3.1.5.RELEASE) and is running on a Glassfish server. After the recent update of firefox version(96.0) we are unable to login to our website. It is secured site(HTTPS) and a third party service(The third party service is called upon login and is HTTP based.) integration is failing as firefox is restricting access of cross-site cookies as SameSite=Lax.We tried to fix this by setting (in firefox config) network.cookie.sameSite.laxByDefault as false. But it didn't work. We have also changed our code for setting cookies to HttpServletResponse using: httpServletResponse.setHeader("Set-Cookie: flavor=choco; SameSite=None; Secure", header) to no avail. On inspecting cookie in firefox cookie storage it still shows SameSite:Lax. It seems like this setHeader() is also not working. What other things we can try to fix this either at browser level or at code level?

Per this note I found -- A Secure cookie is only sent to the server with an encrypted request over the HTTPS protocol. Note that insecure sites (http:) can't set cookies with the Secure directive. ---

I'm not technical but the -- httpServletResponse.setHeader -- Setting WITH SECURE ....was it changed Knowing this fact?