Google mayelana nenhloso yokuyeka ngokuphelele ukusekela amakhukhi enkampani yangaphandle ku-Chrome phakathi neminyaka emibili ezayo, asethwa lapho ufinyelela amasayithi ngaphandle kwesizinda sekhasi lamanje. Amakhukhi anjalo asetshenziselwa ukulandelela ukunyakaza kwabasebenzisi phakathi kwamasayithi kukhodi yamanethiwekhi okukhangisa, amawijethi enethiwekhi yokuxhumana nomphakathi kanye nezinhlelo zokuhlaziya iwebhu.
Like izolo inhloso yokuhlanganisa isihloko somenzeli womsebenzisi, ukwenqatshwa kwamakhukhi enkampani yangaphandle kuthuthukiswa njengengxenye yohlelo. , okuhloswe ngayo ukuzuza ukuvumelana phakathi kwesidingo sabasebenzisi sokugcina ubumfihlo kanye nesifiso samanethiwekhi okukhangisa namasayithi ukulandelela okuthandwa yizivakashi. Kuze kube sekupheleni kwalo nyaka kumodi kulindeleke ukuthi ifakwe esipheqululini ukukala ukuguqulwa nokwenza ukukhangisa kube ngokwakho ngaphandle kokusebenzisa amakhukhi ezinkampani zangaphandle.
Ukunquma isigaba sezintshisekelo zabasebenzisi ngaphandle kokuhlonza komuntu ngamunye futhi ngaphandle kokubhekisela kumlando wokuvakashela amasayithi athile, amanethiwekhi okukhangisa akhuthazwa ukusebenzisa i-API. , ukuhlola umsebenzi womsebenzisi ngemva kokushintshela ekukhangiseni - API , kanye nokuhlukanisa abasebenzisi ngaphandle kokusebenzisa izihlonzi zezindawo eziphambene - i-API . Ukuthuthukiswa kokucaciswa okuhlobene nokuboniswa kokukhangisa okuhlosiwe
ngaphandle kokwephulwa kwemfihlo, eyenziwa , edalwe inhlangano ye-W3C.
Njengamanje, esimweni sokuvikela ekudlulisweni kwamakhukhi ngesikhathi Isibaluli se-SameSite esicaciswe kusihloko se-Set-Cookie siyasetshenziswa, okuthi, kusukela ku-Chrome 76, isethwe ngokuzenzakalelayo kunani elithi βSameSite=Laxβ, elikhawulela ukuthunyelwa kwamakhukhi ukuze afakwe kumasayithi ezinkampani zangaphandle, kodwa amasayithi khansela ukuvinjelwa ngokubeka ngokusobala inani SameSite=None lapho usetha Ikhukhi. Isibaluli se-SameSite singathatha amanani amabili 'okuqinile' noma 'okuxega'. Kumodi 'eqinile', Amakhukhi ayavinjelwa ukuthi athunyelwe nganoma yiluphi uhlobo lwezicelo zesayithi eliphambene. Kumodi 'exegayo', kusetshenziswa imikhawulo ekhululeke kakhudlwana futhi ukudluliswa kwe-Cookie kuvinjiwe kuphela ezicelweni ezingaphansi zamasayithi ahlukene, njengesicelo sesithombe noma ukulayisha okuqukethwe nge-iframe.
I-Chrome 80, ehlelelwe uFebhuwari 4, izosebenzisa umkhawulo oqinile ozovimbela ukucutshungulwa kwamakhukhi ezinkampani zangaphandle ngezicelo ngaphandle kwe-HTTPS (ngesibaluli se-SameSite=None, Amakhukhi angasethwa kuphela kumodi Evikelekile). Ngaphezu kwalokho, umsebenzi uyaqhubeka nokusebenzisa amathuluzi okuthola nokuvikela ekusetshenzisweni kwezindlela zokulandelela i-bypass kanye nokuhlonza okufihliwe ("izigxivizo zeminwe zesiphequluli").
Njengesikhumbuzi, kuFirefox, kuqala ngokukhululwa , ngokuzenzakalelayo, Amakhukhi azo zonke izinhlelo zokulandela umkhondo zezinkampani zangaphandle azinakwa. I-Google ikholelwa ukuthi ukuvinjwa okunjalo kuyafaneleka, kodwa kudinga ukulungiswa kokuqala kwe-Web ecosystem kanye nokuhlinzekwa kwamanye ama-API ukuze kuxazululwe izinkinga lapho amakhukhi enkampani yangaphandle ake asetshenziswa khona ngaphambilini, ngaphandle kokwephula ubumfihlo noma ukubukela phansi imodeli yokwenza imali yamasayithi asekelwa yizikhangiso. Ephendula ekuvinjweni kwe-Cookie ngaphandle kokunikeza enye indlela, amanethiwekhi esikhangiso awazange ayeke ukulandela umkhondo, kodwa athuthela ezindleleni eziyinkimbinkimbi kakhulu ezisekelwe ezigxivizweni zeminwe noma ngokusebenzisa. kokulandelela izizinda ezingaphansi kwehhotela esizindeni sesayithi lapho ukukhangisa kuboniswa khona.
Source: opennet.ru