Updates
- Winter 2024 Updates
- Winter 2022 Remote Instruction
- Chrome 84 SameSite Info
- Summer 2020 Instruction
For a detailed explanation, continue reading below.
On July 14, 2020, Chrome plans to enforce a new cookies model to provide protection against network attacks in its version 84 browser. Under this new model, HTTP cookies must either:
This model also requires web developers to properly attribute which kind of cookies they are using. Other browsers have announced plans to adopt the same approach as Chrome, although the timeline for their changes has not been made public.
The changes in default cookies settings may affect any webpage that uses third-party content. Examples of third-party content include iClicker Remote Registration, the Zoom Conference Scheduler integration, and possibly other integrated external tools such as publisher content. This content will be blocked from being displayed if the cookies are not appropriately configured.
You are affected if:
Example of third-party content (iClicker Remote Registration) not displaying correctly in Chrome 80 when secure-by-default browser cookies settings are in place.
As a content consumer, you have two options to view the content:
As content creators, instructors, TAs, and course designers, should provide an option to view third-party content. In a Canvas course site, instructors and TAs can select the “Load in a new tab” option when they add External URLs or External Tools to a Module, or when adding an External Tool Assignment. We strongly recommend this approach to reduce the amount of troubleshooting and student questions, especially given that other browsers have announced plans to adopt the same approach as Chrome.
Select the Load in a new tab option when adding External URLs or External Tools to Canvas Modules.
Select the Load This Tool In A New Tab option in External Tool Canvas Assignments.
The EdTech Support (ETS) office has tested the integrated learning tools connected to Canvas available to all courses. As of February 10th, 2020, ETS has found that the following vendors still need to update their tools in order for their content to display correctly when secure-by-default browser cookie settings are in place:
Tool/Integration | Problem | Recommendation |
iClicker | Users cannot register their iClicker remotes. | Use a different browser. |
Zoom | Users are not automatically logged in within Canvas. | Click link in the error message to open new window; or use a different browser. Follow the instructions on the screen if you are asked to log in again. |
If you find any other third-party tools that are not working as expected, please report the issue by emailing canvas@ucsd.edu.
Yes, and according to WhatIsMyBrowser.com here's why:
Websites and cloud services, like Canvas, take advantage of new features that modern web browsers provide, such as:
If you're running something that's very out of date, you probably won't be able to use some or all of the features of the sites you visit.
If you run a web browser that is out of date and which contains security vulnerabilities, you risk having your computer compromised by criminals. Depending on the security exploit, your personal information (including emails, banking details, online sales, photos and other sensitive information) could be stolen or destroyed. This is not a hypothetical occurrence; it happens regularly and in large volumes.
If your computer's security is compromised, you also run the risk of being used as a "middle man" in online crime by sending out thousands of spam emails; or as an unwitting pawn in large scale attacks against UC San Diego and other internet users – all without you even being aware.
The content on this page was adapted from the University of Chicago's Academic Technology Solutions support site.