← Back to release summary

Cookie Store API `maxAge` attribute

Category

Miscellaneous

Type

New or changed feature

Status

Proposed (Chrome Proposed)

Intent stage

None

Summary

Allows callers to specify a `maxAge` when setting a cookie with the Cookie Store API. Cookie expiry time is already configurable using the `expires` attribute, but `maxAge` provides a more idiomatic option and aligns the Cookie Store API with the options provided by `document.cookie` and the `Set-Cookie` HTTP Header.

Motivation

Currently, developers can use the `expires` attribute when setting a cookie with the Cookie Store API to set an absolute timestamp for expiry. This can be unintuitive and is impacted by client-side clock skew. RFC6265bis and the document.cookie API provide a `Max-Age` attribute, which allows for relative cookie lifetimes and ergonomic deletion. We should provide a `maxAge` option in the Cookie Store API to support relative expiry and align with these APIs.

Standards & signals

• Specification: https://github.com/whatwg/cookiestore/pull/292
• Firefox: Positive
• Safari: Support — We are actively developing this feature in collaboration with WebKit https://github.com/whatwg/cookiestore/pull/292#pullrequestreview-3538599229
• Web developers: Positive — Could be easier for developers to work with now-relative values, aligns the Cookie Store API with the features provided by document.cookie and HTTP Cookies
• Tracking bug: https://issues.chromium.org/430926231

View on chromestatus.com