adds 'Secure: true' for clay-session cookie (#31)

Browsers are throwing warnings that the `clay-session` cookie will be rejected due to the presence of `SameSite: "None"` without `Secure: true`. This commit adds the `Secure: true` attribute to the cookie.
clay · Oct 9, 2020 · 283a491 · 283a491
1 parent 9725b50
commit 283a491
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/services/session-store.js b/services/session-store.js
@@ -33,6 +33,7 @@ function createSessionStore(store = {}) {
     name: 'clay-session',
     cookie: {
       maxAge: 1000 * 60 * 60 * 24 * 7, // 1 week
+      secure: true
     },
     store: redisStore,
   });