Only permit cookies to be sent over secure connections - planiverse - A minimalist, no-JS front-end for Mastodon.

commit 79800b3cc931295353f838eac387636ba2613a4f
parent d2c1874f0b5cc8d2f1431705753ef9702fc82187
Author: St John Karp <stjohn@fuzzjunket.com>
Date:   Sun, 19 Aug 2018 15:34:46 -0700

Only permit cookies to be sent over secure connections

Updated the session config to enforce secure cookies.

Diffstat:
M config/session.php  | 2 +-

1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/config/session.php b/config/session.php
@@ -164,7 +164,7 @@ return [
     |
     */
 
-    'secure' => env('SESSION_SECURE_COOKIE', false),
+    'secure' => env('SESSION_SECURE_COOKIE', true),
 
     /*
     |--------------------------------------------------------------------------

	planiverse A minimalist, no-JS front-end for Mastodon.
	git clone https://git.stjo.hn/planiverse
	Log \| Files \| Refs \| README \| LICENSE