Follow
Requiring websites to disclose cookies is similar to california's law requiring labeling of products which may contain carcinogins in that they're both so broad that they've become less than worthless
@swiley @valleyforge SSO doesn't even need third party cookies.
@swiley @valleyforge it does take some overhead off but you can bounce unauthenticated sessions to the login portal (which then has first party cookie for your login) which in turn bounces again to google or whoever and then does a redirect back that says "no actually the sessions legit." it's how oauth works.
although it's smoother if you're in a kerberos/gssapi situation where you can just hand the token along so it can skip the extra steps.
although it's smoother if you're in a kerberos/gssapi situation where you can just hand the token along so it can skip the extra steps.
@valleyforge Other than SSO (and abusive tracking)I can't think of a good reason to use 3rd party cookies.