Chrome cookie samesite attribute warnings

Bronze Contributor
Bronze Contributor

I'm seeing Chrome console messages concerning a lot of the cookies injected by my Tealium pixels.

For example,:

(index):1 A cookie associated with a cross-site resource at was set without the `SameSite` attribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set with `SameSite=None` and `Secure`. You can review cookies in developer tools under Application>Storage>Cookies and see more details at and

Is there any action I need to take in Tealium to resolve these warnings? It appears these will break when Chrome v80 is released (if I'm reading everything correctly)


Chrome cookie samesite attribute warnings

Employee Emeritus

Here are two good (and entertaining) resources on this topic.  It's entertaining because it is the Chrome developers having a friendly discussion with Safari developers.  The Chrome team is asking for a Safari fix in how it works with SameSite.  The group may be waiting for this fix (or waiting until the last minute) to change how their server responds.

Because the domain is owned by Google, you would expect them to flip the switches to update the SameSite response before they release their updated Chrome browser.  (This is also the perspective of one person in the second link above.)

I have a blog on this topic that shows a specific example of what will happen when the Chrome browser is updated next year.

I think the most important action you can take now is work with your Enterprise data collection vendors and ask how to CNAME (make 1st party) their data collection endpoint.  This is not possible for all vendors.  For other vendors (Google domains such as, it is likely just a matter of "wait and see."