{"id":2453,"date":"2022-04-01T14:04:18","date_gmt":"2022-04-01T14:04:18","guid":{"rendered":"http:\/\/galhano.com\/blog\/?p=2453"},"modified":"2026-01-20T10:39:17","modified_gmt":"2026-01-20T10:39:17","slug":"problem-with-session-in-iframe-after-windows-update","status":"publish","type":"post","link":"https:\/\/galhano.com\/blog\/?p=2453","title":{"rendered":"Problem with Session in iFrame after windows update"},"content":{"rendered":"\n<p>Microsoft&nbsp;ASP.NET will now \nemit a SameSite cookie header when HttpCookie.SameSite value is &#8220;None&#8221; \nto accommodate upcoming changes to SameSite cookie handling in Chrome. \nAs part of this change, FormsAuth and SessionState\n cookies will also be issued with SameSite = &#8216;Lax&#8217; instead of the \nprevious default of &#8216;None&#8217;, though these values can be overridden in \nweb.config.<\/p>\n\n\n\n<p>You have to set the cookieSameSite= &#8220;None&#8221; in the session state tag to avoid this issue. I have tried this and working well.<\/p>\n\n\n\n<pre class=\"wp-block-syntaxhighlighter-code\">&lt;system.web>\n&lt;sessionState cookieSameSite=\"None\"  cookieless=\"false\" timeout=\"360\">\n&lt;\/sessionState> \n&lt;\/system.web><\/pre>\n\n\n\n<p><a href=\"https:\/\/social.msdn.microsoft.com\/Forums\/en-US\/1b99630c-299c-446e-bf4b-d7d4d74bf9ef\/problem-with-session-in-iframe-after-recent-windows-update?forum=aspstatemanagement\">https:\/\/social.msdn.microsoft.com\/Forums\/en-US\/1b99630c-299c-446e-bf4b-d7d4d74bf9ef\/problem-with-session-in-iframe-after-recent-windows-update?forum=aspstatemanagement<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft&nbsp;ASP.NET will now emit a SameSite cookie header when HttpCookie.SameSite value is &#8220;None&#8221; to accommodate upcoming changes to SameSite cookie handling in Chrome. As part of this change, FormsAuth and SessionState cookies will also be issued with SameSite = &#8216;Lax&#8217; instead of the previous default of &#8216;None&#8217;, though these values can be overridden in web.config. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[43,4,28,22],"tags":[],"class_list":["post-2453","post","type-post","status-publish","format-standard","hentry","category-netfx","category-aspnet","category-aspnet-20","category-microsoft","author-admin"],"_links":{"self":[{"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2453","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2453"}],"version-history":[{"count":3,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2453\/revisions"}],"predecessor-version":[{"id":2456,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2453\/revisions\/2456"}],"wp:attachment":[{"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2453"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2453"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/galhano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2453"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}