diff --git a/user-settings.go b/user-settings.go
index a872f11..68c3a39 100755
--- a/user-settings.go
+++ b/user-settings.go
@@ -72,8 +72,9 @@ func saveUserSettings(w http.ResponseWriter, settings UserSettings) {
 			Value:    cd.GetValue(settings),
 			Path:     "/",
 			Expires:  expiration,
-			Secure:   true,
-			SameSite: http.SameSiteStrictMode,
+			Secure:   true, // Ensure HTTPS is required
+			HttpOnly: true,
+			SameSite: http.SameSiteStrictMode, // Restrict cross-site usage
 		})
 	}