From d76d4a1ce8c7ab8a521e108e60cae81a95c07f52 Mon Sep 17 00:00:00 2001 From: Aaron Selya Date: Wed, 21 Aug 2024 10:24:13 -0400 Subject: [PATCH] Update proposals/hasCrossSiteAncestor.md Co-authored-by: bvandersloot-mozilla <90582190+bvandersloot-mozilla@users.noreply.github.com> --- proposals/hasCrossSiteAncestor.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/proposals/hasCrossSiteAncestor.md b/proposals/hasCrossSiteAncestor.md index 5d629e37..ad89c977 100644 --- a/proposals/hasCrossSiteAncestor.md +++ b/proposals/hasCrossSiteAncestor.md @@ -150,7 +150,7 @@ If no `hasCrossSiteAncestor` value is provided it will be populated using the al If no value is set for hasCrossSiteAncestor cookies with both true and false values for `hasCrossSiteAncestor` will be returned. Otherwise, cookies will be returned that match the `topLevelSite` and the passed value for `hasCrossSiteAncestor`. When the `partitionKey` property is not specified, only unpartitioned cookies are returned. These cookies always have a `false` value for `hasCrossSiteAncestor`. If a `hasCrossSiteAncestor` value is provided without a corresponding `topLevelSite` value, an error will be returned. - `cookies.set()`: -As described the Abuse Mitigations section, this method will not allow a `hasCrossSiteAncestor` value of false, if the URL associated with the cookie and the `topLevelSite` in the `partitionKey` are not first-party. If this is attempted, an error will be returned. If a `hasCrossSiteAncestor` value is provided without a corresponding `topLevelSite` value, an error will be returned. Additionally, if no `hasCrossSiteAncestor` value is provided it will be populated using the algorithm described above. +As described the Abuse Mitigations section, this method will not allow a `hasCrossSiteAncestor` value of false if the URL associated with the cookie and the `topLevelSite` in the `partitionKey` are not first-party. If this is attempted, an error will be returned. If a `hasCrossSiteAncestor` value is provided without a corresponding `topLevelSite` value, an error will be returned. Additionally, if no `hasCrossSiteAncestor` value is provided it will be populated using the algorithm described above. - `cookies.remove()`: If no `hasCrossSiteAncestor` value is provided it will be populated using the algorithm described above when determing the cookie to remove. If a `hasCrossSiteAncestor` value is provided without a corresponding `topLevelSite` value, an error will be returned. If `topLevelSite` and `hasCrossSiteAncestor` values are provided, they will be used by the method even if the combination of the values would be invalid.