Set the flags “HttpOnly”, “secure” and “SameSite” for cookies in the “Set-Cookie” upstream response headers.

Support details: Supported by NGINX, Inc. for active NGINX Plus subscribers
Supported OS versions: NGINX Plus Technical Specifications
Installation instructions: Cookie-Flag Module Admin Guide
Configuration and additional info: GitHub Module Page