Had to disable SameSite cookies to book a flight on United.
They were using DNS names to shard their booking frontends. The 'rev' cookie was getting blocked, and then when the frontend made a request for weirdhost/rev it hit a 500 error...
Seems like there's got to be a better way of rolling this out, especially if United has a software procurement/deployment process that takes longer than 3 chrome releases....