From f851c76d0bc274d8e3c3bd08a880922e2297919a Mon Sep 17 00:00:00 2001
From: "M. J. Fromberger" <fromberger@tailscale.com>
Date: Sat, 12 Aug 2023 21:47:17 -0700
Subject: [PATCH] server/tailsql: update session cookie settings

---
 README.md                 | 2 ++
 server/tailsql/tailsql.go | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 9cf4be1..e1bde53 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,7 @@
 # TailSQL
 
+http://tailsql-dev?q=meta:named
+
 TailSQL is a self-contained SQL playground service that runs on [Tailscale](https://tailscale.com).
 It permits users to query SQL databases from a basic web-based UI, with support for any database
 that can plug in to the Go [`database/sql`](https://godoc.org/database/sql) package.
diff --git a/server/tailsql/tailsql.go b/server/tailsql/tailsql.go
index f299420..0a5bd77 100644
--- a/server/tailsql/tailsql.go
+++ b/server/tailsql/tailsql.go
@@ -89,7 +89,7 @@ const noBrowsersHeader = "Sec-Tailsql"
 // siteAccessCookie is a cookie that must be presented with any request from a
 // browser that includes a query, and does not have the noBrowsersHeader.
 var siteAccessCookie = &http.Cookie{
-	Name: "tailsqlQuery", Value: "1", SameSite: http.SameSiteStrictMode, HttpOnly: true,
+	Name: "tailsqlQuery", Value: "1", SameSite: http.SameSiteLaxMode, HttpOnly: true,
 }
 
 func requestHasSiteAccess(r *http.Request) bool {