diff --git a/confidential_backend/config.py b/confidential_backend/config.py
index a1f8596b..94149592 100644
--- a/confidential_backend/config.py
+++ b/confidential_backend/config.py
@@ -14,8 +14,8 @@
 
 SESSION_TYPE = os.getenv("SESSION_TYPE", 'redis')
 SESSION_REDIS = redis.from_url(os.getenv("SESSION_REDIS", "redis://127.0.0.1:6379"))
-SESSION_COOKIE_SAMESITE = os.getenv("SESSION_COOKIE_SAMESITE", 'None')
-SESSION_COOKIE_SECURE = os.getenv("SESSION_COOKIE_SECURE", 'true').lower() == 'true'
+SESSION_COOKIE_SAMESITE = os.getenv("SESSION_COOKIE_SAMESITE", 'Lax')
+SESSION_COOKIE_SECURE = os.getenv("SESSION_COOKIE_SECURE", 'false').lower() == 'true'
 
 REQUEST_CACHE_URL = os.environ.get('REQUEST_CACHE_URL', 'redis://localhost:6379/0')
 REQUEST_CACHE_EXPIRE = 24 * 60 * 60  # 24 hours