diff --git a/ietf/settings.py b/ietf/settings.py
index 8ae81240d..1919130ec 100644
--- a/ietf/settings.py
+++ b/ietf/settings.py
@@ -1238,4 +1238,7 @@ if SERVER_MODE != 'production':
 
     # Cannot have this set to True if we're using http: from the dev-server:
     CSRF_COOKIE_SECURE = False
-    SESSION_COOKIE_SECURE = False
\ No newline at end of file
+    CSRF_COOKIE_SAMESITE = 'Lax'
+    SESSION_COOKIE_SECURE = False
+    SESSION_COOKIE_SAMESITE = 'Lax'
+    
\ No newline at end of file