SameSite flag on Jetty session cookies

How can I add the flag SameSite=Lax or SameSite=Strict to session cookies generated by Jetty if I am using it to host war files?

Solution

Starting with Jetty 9.4.23, you can specify the desired SameSite value for JSESSIONID cookie set by Jetty in web.xml file of your web app like this:

<session-config>
    <cookie-config>
        <comment>__SAME_SITE_STRICT__</comment>
    </cookie-config>
</session-config>

Other possible values are __SAME_SITE_LAX__ and __SAME_SITE_NONE__.

See issue #4247 in Jetty for details.

Missing class org.eclipse.jetty.util.MultiException in Jetty 12
How do you set in Jetty 12 a max request size programmatically
Getting '... scanned from multiple locations..' while starting jetty service
What is the equivalent of the code written by jetty.continuation in Jakarta.server.AsyncContext?
External jar available to all Jetty web services
Haproxy Bad Gateway 502
where to download jetty source code?
SameSite flag on Jetty session cookies
java.lang.ClassNotFoundException: jakarta.servlet.http.HttpSessionContext with Spring Boot 3 and Jetty server
Jetty doesn't show up in jcmd
Deploy Struts2 WebApp Within An Eclipse RCP Application Via Jetty
How to configure Jetty Server v12 to serve CSS and Javascript files
Jetty 12 throwing exception on new Server()
java.lang.ClassNotFoundException: org.eclipse.jetty.Server
Access ActiveMQ Jetty logs with Java service wrapper
The Spring Boot's WelcomePageHandlerMapping is getting called on invalid API path where the 404 error expected
Validate File Upload Request BEFORE File is Uploaded to Jetty
Debugging Scala code with simple-build-tool (sbt) and IntelliJ
How to check heap usage of a running JVM from the command line?
unexpected error 404 - for resources registered in nested springboot jar
Embedded Jetty WebSocket server in a different context
Reduce number of threads with multiple Connectors in Jetty
Jetty Error: I' starting my web aap and all of sudden Getting this Error
How does Jetty HttpClient use Threads?
Jetty ResourceHandler serving js.gz file
Porting AbstractHandler implementation from Jetty 11 to Jetty 12
App Engine Java 11 helloworld-servlet sample on a local jetty: 404 error after loading page
How to create Rest API in Jetty 12 using Handler.Abstract
Porting from Jetty 11 to Jetty 12. Missing StatisticsHandler methods
How do I configure embedded jetty server to log all requests?