From dc7bc039757225106a7087821dc96d4ac3abe284 Mon Sep 17 00:00:00 2001
From: Tor Andersson <tor@ccxvii.net>
Date: Thu, 5 Aug 2021 13:44:52 +0200
Subject: Set cookie SameSite: Lax.

---
 server.js | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'server.js')

diff --git a/server.js b/server.js
index c95ffd9..5e90135 100644
--- a/server.js
+++ b/server.js
@@ -70,7 +70,10 @@ app.use(express_session({
 	rolling: true,
 	saveUninitialized: false,
 	store: session_store,
-	cookie: { maxAge: 7 * 24 * 60 * 60 * 1000 }
+	cookie: {
+		maxAge: 7 * 24 * 60 * 60 * 1000,
+		sameSite: 'lax',
+	}
 }));
 app.use(connect_flash());
 
-- 
cgit v1.2.3