Cookie不再保存用于Google Chrome中不安全的网站 [英] Cookies no longer save for insecure sites in Google Chrome

问题描述

在9月初的某个时候，一切正常。但是，大约在9月6日某个时候，在我们的测试环境（强制使用SSL，但没有实际的SSL证书）中，Cookie将不再保存到浏览器中，而只能保存在Google Chrome中。 （我没有在其他许多浏览器上进行测试，但cookie确实在Internet Explorer 11中设置正确）。在为我的本地服务器（不强制实施SSL）运行和在生产中（强制为SSL，但具有实际证书）运行时，cookie也是正确的。

Prior to sometime in early September, everything worked fine. However, sometime around September 6, in our test environment (which forces, SSL, but does not have an actual SSL certificate) cookies would no longer save to the browser, but only in Google Chrome. (I didn't test in many other browsers, but the cookies did get set set correctly in Internet Explorer 11). The cookies also were correctly when running for my local server (which does not enforce SSL) and in production (which does force SSL, but has an actual certificate).

相应地，我的猜测是Google Chrome浏览器不再接受来自不安全网站的cookie。但是，我在查找此类文档时遇到了麻烦。这不是世界末日不能解决的问题，但是如果我们每次刷新页面或转到新页面时都必须登录，它并没有使用方便。

Accordingly, my guess is that Google Chrome no longer accepts cookies from insecure sites. However, I'm having trouble finding this kind of documentation. It is not the end of the world doesn't solve, but it doesn't using convenient if we have to login every time you refresh the page or go to a new page.

有人知道问题出在哪里吗，也许是解决方法或解决方案？

Does anyone know what the problem is, and perhaps a workaround or solution?

推荐答案

我只是遇到了同样的问题。解决方案：使用 .test作为您的TLD。
.test似乎是一个为此目的而公认的保留TLD。
我刚刚进行的一些测试表明Chrome 69可以使用.test域放松。

I just ran into this same problem. Solution: use ".test" as your TLD. ".test" seems to be a recognised, reserved TLD for this purpose. Some testing I did just now indicates that Chrome 69 relaxes with .test domains.

这篇关于Cookie不再保存用于Google Chrome中不安全的网站的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！