CHIPS Partitioned cookie missing SameSite=None or Secure

Error text / 报错原文

• Partitioned cookie missing SameSite=None
• CHIPS cookie not set
• third party cookie blocked login

What it means

A cross-site login flow relies on cookies that are not marked correctly for modern browser partitioning rules.

Most common causes

• Missing Secure
• Missing SameSite=None
• Partitioned without correct context
• Legacy third-party cookie assumption

Fastest fix

• Reproduce the smallest failing case.
• Check environment, platform, and production settings.
• Use the related local tool to classify the issue.
• Fix the highest-risk security or data issue first.

Safe fix

• Keep secrets out of client code and logs.
• Prefer least privilege and explicit allowlists.
• Add a regression test or checklist before retrying.
• Document the working production configuration.

What not to do

• Do not disable security controls as a permanent fix.
• Do not paste secrets into public issue trackers or AI chats.
• Do not trust preview success as production readiness.

Diagnostic commands

window.PublicKeyCredential
location.origin
document.querySelector("input[autocomplete*=webauthn]")

Related tools

• /tools/samesite-chips-cookie-checker/ →
• /tools/passkey-readiness-checker/ →

Related errors

• WebAuthn NotAllowedError during passkey login →
• WebAuthn AbortError during passkey login →
• Passkey conditional UI not showing →
• WebAuthn allowCredentials mismatch →
• WebAuthn RP ID mismatch →
• Passkey not available on Android or iOS →

Sources

• https://www.corbado.com/blog/webauthn-errors ↗
• https://developer.chrome.com/docs/identity/webauthn-conditional-create ↗