From 1318fe6914da64034e28c23ee7170eaa1c8b0533 Mon Sep 17 00:00:00 2001
From: Henrik Levkowetz <henrik@levkowetz.com>
Date: Wed, 19 Aug 2020 13:25:25 +0000
Subject: [PATCH] Changes to permit login to the dev. server from recent
 browsers (such as Chrome 84)  - Legacy-Id: 18381

---
 ietf/settings.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/ietf/settings.py b/ietf/settings.py
index 8ae81240d..1919130ec 100644
--- a/ietf/settings.py
+++ b/ietf/settings.py
@@ -1238,4 +1238,7 @@ if SERVER_MODE != 'production':
 
     # Cannot have this set to True if we're using http: from the dev-server:
     CSRF_COOKIE_SECURE = False
-    SESSION_COOKIE_SECURE = False
\ No newline at end of file
+    CSRF_COOKIE_SAMESITE = 'Lax'
+    SESSION_COOKIE_SECURE = False
+    SESSION_COOKIE_SAMESITE = 'Lax'
+    
\ No newline at end of file