From dd09b70850e6c939eb4a470dd1402f2093cb6532 Mon Sep 17 00:00:00 2001
From: Henrik Levkowetz <henrik@levkowetz.com>
Date: Wed, 12 Aug 2020 13:08:17 +0000
Subject: [PATCH] Added secure=True, samesite='None' for user preference
 cookies, to play well with recent changes in browser cookie handling.  -
 Legacy-Id: 18356

---
 ietf/cookies/views.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ietf/cookies/views.py b/ietf/cookies/views.py
index 065e0a649..2755436df 100644
--- a/ietf/cookies/views.py
+++ b/ietf/cookies/views.py
@@ -36,7 +36,8 @@ def preferences(request, **kwargs):
     request.COOKIES.update(preferences)
     response = render(request, "cookies/settings.html", preferences )
     for key in new_cookies:
-        response.set_cookie(key, new_cookies[key], settings.PREFERENCES_COOKIE_AGE)
+        response.set_cookie(key, new_cookies[key],
+            max_age=settings.PREFERENCES_COOKIE_AGE, secure=True, samesite='None')
     for key in del_cookies:
         response.delete_cookie(key)
     return response