diff --git a/compendium_v2/__init__.py b/compendium_v2/__init__.py
index 1a41ef96c11c22dece87b0310308e8cc00f8fa96..7fa8548147f3ba486bf9d6ddd7a5849dd2db33fd 100644
--- a/compendium_v2/__init__.py
+++ b/compendium_v2/__init__.py
@@ -39,6 +39,7 @@ def _create_app(app_config) -> Flask:
 
     app.config['CONFIG_PARAMS'] = app_config
     app.config['SECRET_KEY'] = app_config['SECRET_KEY']
+    app.config['SESSION_COOKIE_SECURE'] = True
     if 'oidc' not in app_config:
         app.config['LOGIN_DISABLED'] = True
         logger.info('No OIDC configuration found, authentication disabled')