In a PHP project the user has just passed the login page where their identity is checked against a table of authorized users. After the next page re-direct to the form page in the browser Dev Tools reports 3 times on the “SameSite” attribute invalid value issue.
The first warning is that the sessionid has been rejected because it already expired — even though I have pre-cleared this browser for any session values.
I’ve examined the Mozilla page but it provides more questions than answers for going forward with best practices for a php application.
As I understand it is the Security Provider file itself that initializes the Session and cookies get set with actions such as a submit form if a “Remember” was initialized –
How can I minimize or eliminate these errors?
Last updated: