From bbabeb6c141431ad34758fe0106cde81440b9fe9 Mon Sep 17 00:00:00 2001
From: efim <efim.nefedov@nordigy.ru>
Date: Sun, 30 Apr 2023 00:58:24 +0400
Subject: [PATCH] bug: secure cookie is not allowed without https

and mvp deployment without tls, so it doesn't work
---
 .../main/scala/industries/sunshine/planningpoker/Auth.scala   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala b/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala
index 7b02155..8ba916d 100644
--- a/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala
+++ b/backend/src/main/scala/industries/sunshine/planningpoker/Auth.scala
@@ -49,7 +49,7 @@ object Auth {
           ResponseCookie(
             name = authcookieName,
             content = newSessionId.toString(),
-            secure = true
+            secure = false
           )
         )
     }
@@ -74,7 +74,7 @@ object Auth {
           ResponseCookie(
             name = authcookieName,
             content = "",
-            secure = true
+            secure = false // TODO make true after enabling https
           ).clearCookie
         )
     }