[PHP] Mozilla warning on SameSite missing
Cookie “AURLANG” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite
Saw this in Firefox while browsing our PHP codebase, and https://aur.archlinux.org.
We may want to patch this in PHP as soon as possible to avoid issues whatsoever. The port is on its way, but we should not depend on it racing Mozilla on this front.
We should fix this for all cookies that we give out.