To set SameSite only on JSESSIONID you can do *Header edit Set-Cookie ^(JSESSIONID.*)$ $1;HttpOnly;Secure;SameSite=None*
It works for me Got the syntax from : https://stackoverflow.com/questions/53762523/setting-the-samesite-attribute-on-the-jsessionid-cookie-using-apache-config https://dino.ciuffetti.info/2011/03/jsessionid-cookie-path-mod_headers/ -- Sent from: http://apache-wicket.1842946.n4.nabble.com/Users-forum-f1842947.html --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
