Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:99826 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 24169 invoked from network); 10 Jul 2017 22:39:26 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 10 Jul 2017 22:39:26 -0000 Authentication-Results: pb1.pair.com header.from=tyra3l@gmail.com; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=tyra3l@gmail.com; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.218.43 as permitted sender) X-PHP-List-Original-Sender: tyra3l@gmail.com X-Host-Fingerprint: 209.85.218.43 mail-oi0-f43.google.com Received: from [209.85.218.43] ([209.85.218.43:33876] helo=mail-oi0-f43.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id EB/C2-47109-B1204695 for ; Mon, 10 Jul 2017 18:39:24 -0400 Received: by mail-oi0-f43.google.com with SMTP id l130so87688428oib.1 for ; Mon, 10 Jul 2017 15:39:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=nIxR95/FxCTLjWZbVFIn2Sm2Pep+MVrbEisw346q6Gg=; b=lHP+5yu12kb4nCp2bOuBi4OaSg0DJEzZx/cZWJa8k5nE0JieXWO1PhP7Jc/fTMvBk+ V+eCgAeov44XSGH/R8AsU6Ui2n5Z02tPWMAnOeTL3fbWX9+u0ylxYI1z98vewc5X4F1k qMBvekIirJsZ/6Q3+pl6vGKVsC36nuBafRbKlhSYW3BbHOwN+QY+uXUgKEZVs1Yj0qln xi7mtNkCPkBZU5hxyARqteg7Rw/mtpUS0UY+OxGvLnbfLkGO810UKsp6gq1ci0hTrp+R r3XckNU+4jHaii6WuC2/WKeRzbn0ex1wTJzP8kB2MjjoPR/cCgS4BYMr4DvNQjVm5fAd LQ5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=nIxR95/FxCTLjWZbVFIn2Sm2Pep+MVrbEisw346q6Gg=; b=bTNUksJYUjlHfa2WLYBMST5drEKls1jg4kg47ENHNqDzfLWGuuK629I6qXrpHh7dhL ez4nbC80Jma/SRX1g224Q0XdH9B/UP5DqYFXwPWj1EOZkXpX2tan1/LxHacTNrHQXlf5 nGXcw5ywDO6YWfb3y+vDift8395jv+W9Y1SWJ0t0DIvWUvjO8yedhjOeDPl58PKDcjgw bp/MZ4xhadqCbuLIVDyBpST+zDUgKGxs6zFQQButW70hqViw2ne/5QKDzEq2uJEQ1IUY NKhBAqualsIIIuEhzFQ35mHtfSwgTCBR/OyCsK1+kMkLwzi8wEG8KYOe8V74iYKv52+C LuBA== X-Gm-Message-State: AIVw112CEnPzHX9sIeoSoV8aSBI7oLPTsrWxed/8SW+dBprBiz3fFzd0 XRWdl4XGh2K9vSkOIKDooJMScfx33uhM X-Received: by 10.202.44.148 with SMTP id s142mr9143357ois.122.1499726361332; Mon, 10 Jul 2017 15:39:21 -0700 (PDT) MIME-Version: 1.0 Received: by 10.74.70.1 with HTTP; Mon, 10 Jul 2017 15:39:20 -0700 (PDT) In-Reply-To: References: Date: Tue, 11 Jul 2017 00:39:20 +0200 Message-ID: To: "Frederik Bosch | Genkgo" Cc: PHP Internals Content-Type: multipart/alternative; boundary="001a1138e4e00711140553fe41c4" Subject: Re: [PHP-DEV] request access to wiki for rfc on samesite cookie implementation From: tyra3l@gmail.com (Ferenc Kovacs) --001a1138e4e00711140553fe41c4 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Mon, Jul 10, 2017 at 10:50 AM, Frederik Bosch | Genkgo wrote: > LS, > > Hereby I am requesting karma to create a RFC for pull request > https://github.com/php/php-src/pull/2613 on the implementation of same > site cookies. This same site cookie is a proposed standard on protecting > browsers/users against CSRF. The standard is adopted by Chrome and planne= d > by Firefox (https://caniuse.com/#search=3Dsamesite). Major PHP frameworks > already implemented this through a custom Set-Cookie header call. The RFC > will try to convince voters that the samesite flag should be implemented = as > a language feature. > > Best regards, > Frederik Bosch > > > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php > > hi, I've granted you with rfc karma on the wiki --=20 Ferenc Kov=C3=A1cs @Tyr43l - http://tyrael.hu --001a1138e4e00711140553fe41c4--