From 1b8595c17e212c23fd80db5899b632f6f06e2adb Mon Sep 17 00:00:00 2001 From: Nicolas Meienberger Date: Fri, 14 Nov 2025 19:13:14 +0100 Subject: [PATCH] fix: cookie not secure --- app/server/modules/auth/auth.controller.ts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/server/modules/auth/auth.controller.ts b/app/server/modules/auth/auth.controller.ts index 57fb5bd..c78d281 100644 --- a/app/server/modules/auth/auth.controller.ts +++ b/app/server/modules/auth/auth.controller.ts @@ -25,7 +25,7 @@ import { toMessage } from "../../utils/errors"; const COOKIE_NAME = "session_id"; const COOKIE_OPTIONS = { httpOnly: true, - secure: process.env.NODE_ENV === "production", + secure: false, sameSite: "lax" as const, path: "/", };