SameSite cookies chrome update testing

Hello

We implemented changes with SameSite cookies for upcoming Google Chrome update. We set SameSite=none on our response. And currently began testing, but some of our testers faced problems. Even when SameSite=none is set. For example, tester was signed in to his personal account on chrome and he disabled his 3rd party cookies. And the app did not worked, when he signed out the google account app started working.

So my question is:

What is the best practice to test this new cookie policy on chrome?

Thanks in advance

Hi,

Go to chrome://flags/#samesite then enable the SameSite flags and relaunch your browser.

It fails if your app keeps refreshing, gets an error, is missing functionality or is displaying a differently.

You can download Chrome Canary to test existing Chrome vs new Chrome side by side.

Hi @znevel ,
Can you please share details of how you added? I’m trying to add but not getting exactly how to do.
[My APP developed in PHP-Codeigniter framework]
Thank you

Testing instructions have been added to the SameSite guide.

https://help.shopify.com/en/api/guides/samesite-cookies

if you are using Shoify app gem, and dont want to upgrade your shopify api lib you can install this rails_sate_site_cookie gem

https://github.com/pschinis/rails_same_site_cookie

Hi @Jason_Tigas

What about if we use a private app to use theStorefront API?

As the private app is managed by Shopify, we can add the samesite attribute into it but in our website, we’re blocked with Chrome which report errors because samesite isn’t set to None

THanks for your support

Hi @Waxonius1

With your private app you should not be running into the same problems, as all code is written by you to be displayed as intended. Shopify, in that case, is simply the API. Are you running into any errors?

FYI, the link to https://help.shopify.com/en/api/guides/samesite-cookies now redirects to https://shopify.dev/docs/apps/auth/oauth/session-tokens