bug: secure cookie is not allowed without https

and mvp deployment without tls, so it doesn't work
2023-04-30 00:58:24 +04:00 · 2023-04-30 00:58:24 +04:00 · bbabeb6c14
parent 65879e092a
commit bbabeb6c14
1 changed files with 2 additions and 2 deletions
--- a/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala
+++ b/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala
@ -49,7 +49,7 @@ object Auth {
          ResponseCookie(
            name = authcookieName,
            content = newSessionId.toString(),
-            secure = true
+            secure = false
          )
        )
    }
@ -74,7 +74,7 @@ object Auth {
          ResponseCookie(
            name = authcookieName,
            content = "",
-            secure = true
+            secure = false // TODO make true after enabling https
          ).clearCookie
        )
    }