Fix Link to OWASP SameSite information (#27895)

The old link (https://owasp.org/index.php/SameSite) no longer works, so I suggest to use this one instead: https://owasp.org/www-community/SameSite
5 years ago · 74de2475ca
parent 4f3be31e1a
commit 74de2475ca
1 changed files with 1 additions and 1 deletions
--- a/docs/sources/administration/configuration.md
+++ b/docs/sources/administration/configuration.md
@ -461,7 +461,7 @@ Set to `true` if you host Grafana behind HTTPS. Default is `false`.

 ### cookie_samesite

-Sets the `SameSite` cookie attribute and prevents the browser from sending this cookie along with cross-site requests. The main goal is to mitigate the risk of cross-origin information leakage. This setting also provides some protection against cross-site request forgery attacks (CSRF), [read more about SameSite here](https://www.owasp.org/index.php/SameSite). Valid values are `lax`, `strict`, `none`, and `disabled`. Default is `lax`. Using value `disabled` does not add any `SameSite` attribute to cookies.
+Sets the `SameSite` cookie attribute and prevents the browser from sending this cookie along with cross-site requests. The main goal is to mitigate the risk of cross-origin information leakage. This setting also provides some protection against cross-site request forgery attacks (CSRF), [read more about SameSite here](https://owasp.org/www-community/SameSite). Valid values are `lax`, `strict`, `none`, and `disabled`. Default is `lax`. Using value `disabled` does not add any `SameSite` attribute to cookies.

 ### allow_embedding