safari-not-sending-cookie-even-after-setting-samesite-none-secure

Safari samesite none cookie added after login but we are facing the issue in post method. While doing the post method cookie not getting into request header.And always sending the new cookie in the response header. Safari not sending the cookie into request header with samesite none. Kindly help me out.

Added more point to clear the issue about cookie store issue in safari browser.

Our application uses cookies to remember user login. Every auth API call we make, the browser attaches server-set HTTPOnly cookie with the API request and gets a response. This behaviour seems to be broken in safari after Sequoia release.

I read about the cross-site cookie security implemented by safari and our server team added SameSite=None;Secure while setting the cookie. Even after that, it still doesn't work.

Cookies are stored in the safari browser but it is not added into the request header on API call.

Javascript API code to make requests with httpclient to get the response using Cordova framework in mobile app.

The problem is on iOS/safari , the subsequent request does not send the cookie Header with the value.

Android is working fine with the same code. Only Issue in iOS device.

System Information-

OS - Sequoia 15.1

Safari - 18.

iOS Simulator - 18.1

Mobile app - Cordova framework, Javascript, ExtJS

Kindly check why the cookie does not send a header request on every API call?

For authentication and storing Cookes, please see Authentication Services. The behavior is different than Android, but is the supported way to do this on iOS.

Rico


WWDR | DTS | Software Engineer

We have already given the authentication in all the API services. And we are getting the valid cookie in browser. But cookie is not storing in the header request while calling the API using the JavaScript method.

We are not using the swift and objective code in my application.

Kindly suggest how we can set the cookie in header request using the JavaScript in the Cordova framework?

safari-not-sending-cookie-even-after-setting-samesite-none-secure
 
 
Q