Allow config of cookie secure attribute

uwcirg · Nov 1, 2023 · ee266ff · ee266ff
1 parent bf8daa8
commit ee266ff
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/confidential_backend/config.py b/confidential_backend/config.py
@@ -15,6 +15,7 @@
 SESSION_TYPE = os.getenv("SESSION_TYPE", 'redis')
 SESSION_REDIS = redis.from_url(os.getenv("SESSION_REDIS", "redis://127.0.0.1:6379"))
 SESSION_COOKIE_SAMESITE = os.getenv("SESSION_COOKIE_SAMESITE", 'None')
+SESSION_COOKIE_SECURE = os.getenv("SESSION_COOKIE_SECURE", 'true').lower() == 'true'
 
 REQUEST_CACHE_URL = os.environ.get('REQUEST_CACHE_URL', 'redis://localhost:6379/0')
 REQUEST_CACHE_EXPIRE = 24 * 60 * 60  # 24 hours