diff --git a/ldap_jwt_auth/routers/login.py b/ldap_jwt_auth/routers/login.py
index 61d87f6..a152e67 100644
--- a/ldap_jwt_auth/routers/login.py
+++ b/ldap_jwt_auth/routers/login.py
@@ -47,8 +47,8 @@ def login(
             max_age=config.authentication.refresh_token_validity_days * 24 * 60 * 60,
             secure=True,
             httponly=True,
-            samesite="Lax",
-            path="/refresh",
+            samesite="lax",
+            path=f"{config.api.root_path}/refresh",
         )
         return response
     except (InvalidCredentialsError, UserNotActiveError) as exc: