diff --git a/geomagio/api/secure/SessionMiddleware.py b/geomagio/api/secure/SessionMiddleware.py
index 1138e0797e0635e00c5ec2ac17ea28208594b178..252134e28b51332ab8c441e5e04291984593921b 100644
--- a/geomagio/api/secure/SessionMiddleware.py
+++ b/geomagio/api/secure/SessionMiddleware.py
@@ -113,7 +113,8 @@ class SessionMiddleware:
         self, message: Message, value: str, max_age: int = None,
     ):
         headers = MutableHeaders(scope=message)
-        headers.append("Cache-Control", "no-cache")
+        headers.append("Cache-Control", "max-age=60")
+        headers.append("Access-Control-Allow-Origin", "*")
         headers.append(
             "Set-Cookie",
             f"{self.session_cookie}={value};"