diff --git a/http/session_handler.go b/http/session_handler.go
index 5ef7d8409f1..9319b4e1419 100644
--- a/http/session_handler.go
+++ b/http/session_handler.go
@@ -176,9 +176,10 @@ func decodeCookieSession(ctx context.Context, r *http.Request) (string, error) {
 // SetCookieSession adds a cookie for the session to an http request
 func SetCookieSession(key string, r *http.Request) {
 	c := &http.Cookie{
-		Name:   cookieSessionName,
-		Value:  key,
-		Secure: true,
+		Name:     cookieSessionName,
+		Value:    key,
+		Secure:   true,
+		SameSite: 3, // SameSiteStrictMode
 	}
 
 	r.AddCookie(c)