From 896ab5b0eabc7d00e57cd5d6e17a1176bf008f29 Mon Sep 17 00:00:00 2001
From: Kristian Klausen <kristian@klausen.dk>
Date: Thu, 8 Jul 2021 02:43:28 +0200
Subject: [PATCH] grafana: set cookie SameSite to strict

---
 roles/grafana/templates/grafana.ini.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/grafana/templates/grafana.ini.j2 b/roles/grafana/templates/grafana.ini.j2
index 2af3fd67f..4137712c9 100644
--- a/roles/grafana/templates/grafana.ini.j2
+++ b/roles/grafana/templates/grafana.ini.j2
@@ -214,7 +214,7 @@ secret_key = {{ vault_grafana_secret_key }}
 cookie_secure = true
 
 # set cookie SameSite attribute. defaults to `lax`. can be set to "lax", "strict", "none" and "disabled"
-;cookie_samesite = lax
+cookie_samesite = strict
 
 # set to true if you want to allow browsers to render Grafana in a <frame>, <iframe>, <embed> or <object>. default is false.
 ;allow_embedding = false
-- 
GitLab