From a0d93f3375f4238049b0b553fb21070841c87acd Mon Sep 17 00:00:00 2001
From: Daniel Micay <danielmicay@gmail.com>
Date: Tue, 23 Mar 2021 10:46:50 -0400
Subject: [PATCH] explicitly set SameSite for preload session cookie

---
 nginx/snippets/preload.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nginx/snippets/preload.conf b/nginx/snippets/preload.conf
index 12406fca..c3f2d886 100644
--- a/nginx/snippets/preload.conf
+++ b/nginx/snippets/preload.conf
@@ -1,3 +1,3 @@
 add_header Link $preload_resources always;
-add_header Set-Cookie "__Host-preload=1; HttpOnly; Secure; Path=/" always;
+add_header Set-Cookie "__Host-preload=1; HttpOnly; Secure; SameSite=Lax; Path=/" always;
 http2_push_preload on;