From 424bd55816c893dc74e5235f22fa8f503c5b9cc9 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 24 Mar 2021 11:35:37 -0400
Subject: [PATCH] Set SameSite=None on session cookie

---
 session.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/session.go b/session.go
index e379496..c83e66f 100644
--- a/session.go
+++ b/session.go
@@ -40,6 +40,7 @@ func (app *App) InitSession() {
 		MaxAge:   sessionLength,
 		HttpOnly: true,
 		Secure:   strings.HasPrefix(app.cfg.App.Host, "https://"),
+		SameSite: http.SameSiteNoneMode,
 	}
 	app.sessionStore = store
 }