SameSite cookie + StatCounter (in Chrome) - GoFuckYourself.com

Paul&John · 03-19-2020, 02:55 AM

Hi there!

Today I noticed the following in the console log at Chrome:

Quote:

A cookie associated with a cross-site resource at Web Analytics Made Easy - Statcounter was set without the `SameSite` attribute. It has been blocked, as Chrome now only delivers cookies with cross-site requests if they are set with `SameSite=None` and `Secure`. You can review cookies in developer tools under Application>Storage>Cookies and see more details at https://www.chromestatus.com/feature/5088147346030592 and https://www.chromestatus.com/feature/5633521622188032.

But when checking stats via StatCounter users with Chrome browser are still listed there. So my question would be: are the Chrome users still counted, or only those with an older version of the browser?

Also is there anything I can do about it? I did a quick look up and it seems like the guys at statcounter need to update something on their end for this not being blocked.. I also tried to generate the html code to be inserted once again and it seems like I'm getting the same one as I already have.

Thanks.

Paul&John · 03-20-2020, 03:28 AM

Damn, no one?

Bump

Paul&John · 03-22-2020, 06:32 AM

Final bump

blackmonsters · 03-22-2020, 07:09 AM

Quote:

Originally Posted by Paul&John

Final bump

Set-Cookie: somecookie=abc123; SameSite=None; Secure

https://web.dev/samesite-cookies-explained/

Now please send $500 Billion to my paypal account; if you have less than $500 Billion then
I will accept 4 rolls of toilet paper and a tomato instead.

Paul&John · 03-24-2020, 06:38 AM

Thanks for the reply, but this needs to be edited in the Statcounter code itself which gets provided by them, no?

I mean the cookie set by statcounter is this for example:

Code:

__cfduid=dd67a3df3519a5b4e1585056313; expires=Thu, 23-Apr-20 13:25:13 GMT; path=/; domain=.statcounter.com; HttpOnly; SameSite=Lax

And this is the example code added to the footer

Code:

<script type="text/javascript">
var sc_project=2197334; 
var sc_invisible=0; 
var sc_security="d176e8f6"; 
var scJsHost = "https://";
document.write("<sc"+"ript type='text/javascript' src='" +
scJsHost+
"statcounter.com/counter/counter.js'></"+"script>");
</script>
<noscript><div class="statcounter"><a title="Web Analytics"
href="https://statcounter.com/" target="_blank"><img
class="statcounter"
src="https://c.statcounter.com/2197334/0/d176e8f6/0/"
alt="Web Analytics"></a></div></noscript>

so they need to add that SameSite=none; Secure part into the .js ( statcounter.com/counter/counter.js ) , right? I cant overwrite it on my end from Lax to None?

blackmonsters · 03-24-2020, 07:43 AM

Quote:

Originally Posted by Paul&John

Thanks for the reply, but this needs to be edited in the Statcounter code itself which gets provided by them, no?

I mean the cookie set by statcounter is this for example:

Code:

__cfduid=dd67a3df3519a5b4e1585056313; expires=Thu, 23-Apr-20 13:25:13 GMT; path=/; domain=.statcounter.com; HttpOnly; SameSite=Lax

And this is the example code added to the footer

Code:

<script type="text/javascript">
var sc_project=2197334; 
var sc_invisible=0; 
var sc_security="d176e8f6"; 
var scJsHost = "https://";
document.write("<sc"+"ript type='text/javascript' src='" +
scJsHost+
"statcounter.com/counter/counter.js'></"+"script>");
</script>
<noscript><div class="statcounter"><a title="Web Analytics"
href="https://statcounter.com/" target="_blank"><img
class="statcounter"
src="https://c.statcounter.com/2197334/0/d176e8f6/0/"
alt="Web Analytics"></a></div></noscript>

so they need to add that SameSite=none; Secure part into the .js ( statcounter.com/counter/counter.js ) , right? I cant overwrite it on my end from Lax to None?

Yes.

You can't do anything about another site's cookie.
They have to fix it on their end.

Now quit stalling on the toilet paper, I will no longer accept $500 Billion.

Paul&John · 03-24-2020, 08:02 AM

Ok thats what I thought, pretty male from their end

blackmonsters · 03-24-2020, 08:07 AM

Quote:

Originally Posted by Paul&John

Ok thats what I thought, pretty male from their end

Send my toilet paper!

03-20-2020, 03:28 AM	#2
Paul&John Confirmed User Industry Role: Join Date: Aug 2005 Location: YUROP Posts: 8,592	Damn, no one? Bump __________________ Use coupon 'pauljohn' for a $1 discount at already super cheap NameSilo! Anal Webcams \| Kinky Trans Cams Live \| Hotwife XXX Tube \| Get your Proxies here

03-22-2020, 06:32 AM	#3
Paul&John Confirmed User Industry Role: Join Date: Aug 2005 Location: YUROP Posts: 8,592	Final bump __________________ Use coupon 'pauljohn' for a $1 discount at already super cheap NameSilo! Anal Webcams \| Kinky Trans Cams Live \| Hotwife XXX Tube \| Get your Proxies here

03-24-2020, 06:38 AM	#5
Paul&John Confirmed User Industry Role: Join Date: Aug 2005 Location: YUROP Posts: 8,592	Thanks for the reply, but this needs to be edited in the Statcounter code itself which gets provided by them, no? I mean the cookie set by statcounter is this for example: Code: __cfduid=dd67a3df3519a5b4e1585056313; expires=Thu, 23-Apr-20 13:25:13 GMT; path=/; domain=.statcounter.com; HttpOnly; SameSite=Lax And this is the example code added to the footer Code: <script type="text/javascript"> var sc_project=2197334; var sc_invisible=0; var sc_security="d176e8f6"; var scJsHost = "https://"; document.write("<sc"+"ript type='text/javascript' src='" + scJsHost+ "statcounter.com/counter/counter.js'></"+"script>"); </script> <noscript><div class="statcounter"><a title="Web Analytics" href="https://statcounter.com/" target="_blank"><img class="statcounter" src="https://c.statcounter.com/2197334/0/d176e8f6/0/" alt="Web Analytics"></a></div></noscript> so they need to add that SameSite=none; Secure part into the .js ( statcounter.com/counter/counter.js ) , right? I cant overwrite it on my end from Lax to None? __________________ Use coupon 'pauljohn' for a $1 discount at already super cheap NameSilo! Anal Webcams \| Kinky Trans Cams Live \| Hotwife XXX Tube \| Get your Proxies here

03-24-2020, 08:02 AM	#7
Paul&John Confirmed User Industry Role: Join Date: Aug 2005 Location: YUROP Posts: 8,592	Ok thats what I thought, pretty male from their end __________________ Use coupon 'pauljohn' for a $1 discount at already super cheap NameSilo! Anal Webcams \| Kinky Trans Cams Live \| Hotwife XXX Tube \| Get your Proxies here