From e0d4ee9f8cd78b38aa0f3fc2fea0676c0cd04b5f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adri=C3=A0=20Casaj=C3=BAs?= <adria.casajus@proton.ch>
Date: Wed, 10 Jul 2024 14:06:26 +0200
Subject: [PATCH] Set session to lax

---
 app/session.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app/session.py b/app/session.py
index 481e5ff8..93acd3b9 100644
--- a/app/session.py
+++ b/app/session.py
@@ -87,6 +87,7 @@ class RedisSessionStore(SessionInterface):
         httponly = self.get_cookie_httponly(app)
         secure = self.get_cookie_secure(app)
         expires = self.get_expiration_time(app, session)
+        samesite = self.get_cookie_samesite(app)
         val = pickle.dumps(dict(session))
         ttl = int(app.permanent_session_lifetime.total_seconds())
         # Only 5 minutes for non-authenticated sessions.
@@ -109,6 +110,7 @@ class RedisSessionStore(SessionInterface):
             domain=domain,
             path=path,
             secure=secure,
+            samesite=samesite,
         )