Authentication Cookie

From MgmtWiki
Revision as of 10:54, 17 March 2019 by Tom (talk | contribs) (Problems)

Jump to: navigation, search

Full Title or Meme

An Authentication Cookie is a compact collection of data provided to a User Agent by a Web Site to be retrieved later as proof that an Authentication has be successful with this session on this device.


Cookies were introduced to Web Sites to enable a continuity of


  • The use of Cookies on various devices and User Agents has be restricted in ever more severe ways. These restrictions have limited the functionality of the Authentication Cookie.
  • In particular Apple introduced a restriction on same-site cookies that caused common implementations of OAuth 2.0 to fail. Brock Allen decode that issue on his site[1]



  1. Brock Allen, Same-site cookies, ASP.NET Core, and external authentication providers. (2019-01-11)