Setting the SameSite Attribute
To help prevent cross-site request forgery attacks, the default SameSite attribute on the session server cookie has been updated from None (less restrictive) to Lax (more restrictive).
This change affects two areas of HACloud:
- SAML authentication behind a load balancer
In these cases you'll need to adjust the attribute value to None by:
container.propertiesin a text editor. The default location for this file is
Adding the following line to
Restarting the session server.