2.14.0 is available on GitHub releases.
Two new initialisation options have been introduced to allow the cookie attributes to be controlled.
cookieSameSite allows for the SameSite attribute of the cookie to be set. This can be
null. The default is
null will not set the SameSite attribute.
cookieSecure allows for the Secure attribute to be toggled. This can be
false. The default is
The default options will generate cookies with
SameSite=None; Secure attributes. We believe this will fit the majority of cases, including within HTTPS third party iframes.
You may wish to set
Lax which will increase your users privacy. N.B This option will not work if using the tracker inside a third party iframe but should work in all other circumstances.
Additionally, if you wish for the cookies to work on non-secure HTTP then you must set
- Fix SameSite cookie warning for storage Cookies (#795)