mirror of
https://github.com/discourse/discourse.git
synced 2025-02-21 00:09:23 +08:00
2a0cd066a7
There is a bug that when Safari starts up, and reloads the tabs from the previous session **and** there is a service worker registered for the scope of the document, all cookies marked as `SameSite=Lax` won't be sent in the request. This puts Discourse in a **very** broken state, where: - You appear as a anon user - Subsequent xhr requests will come with logged in data - Refreshing doesn't log you in (cookies are still not sent) - Clicking on the address bar and hitting enter, will log you in (as it will finally send those damn `SameSite=Lax` cookies. Looks a lot like a corner case missed by the fix at https://trac.webkit.org/changeset/241918/webkit