From e402464304e35314cbf476f65b0a4314b8f25151 Mon Sep 17 00:00:00 2001
From: Mrugesh Mohapatra <hi@mrugesh.dev>
Date: Wed, 16 Jun 2021 16:43:35 +0530
Subject: [PATCH] revert(ajax): use 'same-origin' credentials

This reverts commit 80b12ee25c44c17a4f16e1719312d6d06f2032cd via PR #42525.
---
 client/src/utils/ajax.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/src/utils/ajax.js b/client/src/utils/ajax.js
index 927535f1bd..0845ba536a 100644
--- a/client/src/utils/ajax.js
+++ b/client/src/utils/ajax.js
@@ -9,7 +9,7 @@ const tokens = new Tokens();
 
 // TODO: test on staging.  Do we need 'include' everywhere?
 const defaultOptions = {
-  credentials: environment === 'development' ? 'include' : 'same-origin'
+  credentials: environment === 'development' ? 'include' : 'same-site'
 };
 
 // _csrf is passed to the client as a cookie. Tokens are sent back to the server