Delen via


SameSite Enum

Definition

Options to restrict the cookie to not be sent with cross-site requests

public enum SameSite
type SameSite = 
Public Enum SameSite
Inheritance
SameSite

Fields

Name Value Description
None 0

Default cookie-sending behavior option for cross-site requests. The current default behavior is "Lax".

Lax 1

Option to not send cookie on normal cross-site subrequests (example: loading images into a third party site), but to send when a user is navigating to the origin site (i.e. when following a link).

Strict 2

Option to send cookie in a first-party context and not send along with requests initiated by third party websites.

ExplicitNone 3

Option to send cookie in all contexts (i.e in responses to both first-party and cross-origin requests). If this property is set on a cookie, the cookie's Secure attribute must also be set (or the cookie will be blocked).

Applies to