Third-party cookies are set by domains other than the one a user is directly visiting. They are commonly used for online advertising and tracking user behavior across multiple websites. They can be set through JavaScript, iframe, embedded images, or media. SAP primarily uses third-party cookies for service management and single sign-on.

 

Google has announced its plan to phase out support for third-party cookies by the third quarter of 2024. See The Privacy Sandbox Timeline for the Web. However, you can use the third-party deprecation trial, which allows you to re-enable third-party cookies for a page embedded within a cross-site iframe until December 27, 2024.

 

 

To enable the depreciation trial, all applications’ responses must include a deprecation trial token obtained for each affected domain. At SAP, the process of obtaining the tokens is handled centrally. There are three different ways to add the deprecation trial token - you can either provide it in an HTTP header, use a meta tag, or inject the token with JavaScript. For the SAP BTP, Kyma runtime workloads, it is recommended that you use the HTTP header. You must add the token manually for each of the affected workloads. To learn how to do this, read Deprecation Trial for Google's Third-Party Cookies and follow the tutorial Apply Third-Party Cookie Deprecation Trial Tokens for Kyma Runtime Workloads.