Starting from Spotfire installed client (Analyst and Desktop) version 11.7, all third party cookies must be sent over HTTPS, and have the additional cookie attribute "Secure;SameSite=None". This will also become a requirement for the latest LTS versions, 10.10 and 11.4, in a future Service Pack.

This has already been a requirement for the web clients (Spotfire Consumer and Business Author) since late 2019, so any functionality that has been successfully used in a web client since then should continue to work in the installed clients.    

Any custom UI with the ability to add iframes, such as Web Page panels or Text Areas where html sanitation is turned off, may require third party cookies. If this iframe content is served using plain HTTP, these cookies will no longer work. The effect can be anything from being unable to login to loss of saved state. If you are using an iframe in this manner, ensure you make the required changes to use HTTPS and add the additional cookie attribute "Secure;SameSite=None" to avoid being impacted by this new requirement. 

Note: Custom visuals, including the Spotfire JavaScript Visualization Framework (JSViz) or Spotfire Mods, are not affected by the change since they do not require third party cookies.

Starting from Spotfire installed client (Analyst and Desktop) version 11.7, all third party cookies must be sent over HTTPS, and have the additional cookie attribute "Secure;SameSite=None". This will also become a requirement for the latest LTS versions, 10.10 and 11.4, in a future Service Pack.

All

HTTPS, Spotfire® Server and Environment - Installation and Administration manual:

• https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/https.html