Grafana Version - 9
one of our security requirements that deals with session cookies dictates that a session cookie must be a single-session one; it must not supply “Expires” or “Max-age”.
Expire and Max-Age Attributes¶
Session management mechanisms based on cookies can make use of two types of cookies, non-persistent (or session) cookies, and persistent cookies. If a cookie presents the Max-Age or Expires attributes, it will be considered a persistent cookie and will be stored on disk by the web browser based until the expiration time.
Could “Max-age” or “Expires” be eliminated from the session cookie through configuration?
Is this already configurable? If not, any plan to make it configurable?