TheLazy.Dev
Portfolio GitHub

Blog

web

SameSite cookies with Apache

pfreitag

Pete Freitag

Posted on April 1, 2020

SameSite cookies with Apache

Almost two years ago I wrote about how you can enable SameSite cookies with IIS on cookies that do not have the ability to be written as SameSite. Today I was helping a client on Apache do the same thing, here's how we can add SameSite=lax to a JSESSIONID cookie for example:

Header edit Set-Cookie ^(JSESSIONID.\*)$ $1;SameSite=lax

But suppose you just wanted to make all cookies set by your web app SameSite, you can just do this:

Header edit Set-Cookie ^(.\*)$ $1;SameSite=lax

This works by appending ;SameSite=lax to the end of all Set-Cookie http response headers.

💖 💪 🙅 🚩
pfreitag
Pete Freitag

Posted on April 1, 2020

Join Our Newsletter. No Spam, Only the good stuff.

Sign up to receive the latest update from our blog.

Related

Buying nothing, or how digital art is disappearing
discuss Buying nothing, or how digital art is disappearing

November 28, 2024

End-to-End AWS DevOps Project: Automating Build and Deployment of a Node.js Application to Amazon ECS using GitLab CI/CD
aws End-to-End AWS DevOps Project: Automating Build and Deployment of a Node.js Application to Amazon ECS using GitLab CI/CD

November 29, 2024

Zustand Key Features: State Management Simplified
webdev Zustand Key Features: State Management Simplified

November 29, 2024

🌐 The Tech Revolution No One's Talking About: How Citizen Developers 🛠️ Are Eating Silicon Valley's Lunch 💼🍽️
undefined 🌐 The Tech Revolution No One's Talking About: How Citizen Developers 🛠️ Are Eating Silicon Valley's Lunch 💼🍽️

November 29, 2024

Ng-News 24-47: Angular 19
webdev Ng-News 24-47: Angular 19

November 29, 2024