Cut the Clutter: Test Ignore Files Feature - sign up to become a beta tester here.

Forum Discussion

dangonzo's avatar
dangonzo
Explorer | Level 4
6 years ago

SameSite Cookies Error when trying to embed Embedder using dropins.js

I'm trying to utilize the new Embedder feature that was released in preview. Following the instructions on the page to-the-teeth and whitelisting localhost in the App Settings, I am getting a message regarding the Cookies that Dropbox provides about lacking the `SameSite` attribute. Apparently this is something that Dropbox itself needs to set since I'm requesting an iframe hosted by Dropbox (the embedder). Does anyone have any notes about bypassing this issue? Are there CORS settings that I'm neglecting to set up, I'm unsure because every tangentially related issue on Stack Overflow says the problem lies with the sourcec of the iframe. Below is the error message:

 

A cookie associated with a cross-site resource at https://dropbox.com/ was set without the `SameSite` attribute. A future release of Microsoft Edge will only deliver cookies with cross-site requests if they are set with `SameSite=None` and `Secure`. You can review cookies in developer tools under Application>Storage>Cookies and see more details at https://www.chromestatus.com/feature/5088147346030592 and https://www.chromestatus.com/feature/5633521622188032.

 

Thanks in advance, looking forward to clearing this up! :-)

API

5 Replies

  • Greg-DB's avatar
    Greg-DB
    Icon for Dropbox Community Moderator rankDropbox Community Moderator
    6 years ago

    Thanks for the report. Just to clarify, is this preventing the Embedder functionality from working for you? That message should just be a warning, not an error. 

  • dangonzo's avatar
    dangonzo
    Explorer | Level 4
    6 years ago

    My bad, I should have made that clear, it works! I was just concerned about the warning.

  • Greg-DB's avatar
    Greg-DB
    Icon for Dropbox Community Moderator rankDropbox Community Moderator
    6 years ago

    No problem, thanks for clarifying! There's nothing you need to do about that. I'll check with the team to see if there's something we can or should do about that though.

  • thesongcompany's avatar
    thesongcompany
    Explorer | Level 3
    4 years ago

    Hi, is there a workaround to this yet?  We get redirects from our Dropbox embeds in a PWA, and the platform team think it is related to this issue.

    Thanks,

    Antony 

  • Greg-DB's avatar
    Greg-DB
    Icon for Dropbox Community Moderator rankDropbox Community Moderator
    4 years ago

    thesongcompany This thread was just referring to a warning message displayed in the console. That shouldn't have been related to any redirects. This is an old thread anyway though, so if something's not working as expected for you, please open a new thread with the details of the issues you're seeing, such as the relevant code and the steps to reproduce the issue, so we can look into it.

About Dropbox API Support & Feedback

Node avatar for Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.6,037 PostsLatest Activity: 3 years ago
415 Following

The Dropbox Community team is active from Monday to Friday. We try to respond to you as soon as we can, usually within 2 hours.

If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X or Facebook.

For more info on available support options for your Dropbox plan, see this article.

If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!