SameSite cookie in Java application

Question

Do you know any Java cookie implementation which allows to set a custom flag for cookie, like SameSite=strict? It seems that javax.servlet.http.Cookie has a str

Answer 1

I found that our cookies which were being created on a successful return were not changed by "Header edit" or "Header always edit". Apparently apache has two buckets of cookies - see this

What did work for me was

Header onsuccess edit Set-Cookie (.*) "$1; SameSite=Lax"