[squid-users] Reverse proxying Exchange OWA wembail with SSL offloading

[Alex Rousskov]

On 10/29/20 10:27 PM, Scott wrote:

> My point is that, assuming browsers are now enforcing SameSite cookies must 
> be secure, then doing SSL offload (whereby the origin server does NOT flag 
> the cookie as secure) will break.

...

> I've seen other proxy manufacturers provide 
> cookie manipulation; I assume for this kind of issue.

> Do you think Squid should have such a feature?

Yes, I do.

Alex.