From ec45abd9112345145e076dbbd5e53b5444e7a140 Mon Sep 17 00:00:00 2001
From: Simon Vieille <simon@deblan.fr>
Date: Sun, 16 Mar 2025 22:36:38 +0100
Subject: [PATCH] feat(security): set secure auth cookie

---
 backend/controller/auth/controller.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/backend/controller/auth/controller.go b/backend/controller/auth/controller.go
index e87f52d..96c2ed2 100644
--- a/backend/controller/auth/controller.go
+++ b/backend/controller/auth/controller.go
@@ -50,6 +50,7 @@ func (ctrl *Controller) LoginPost(c echo.Context) error {
 				Path:     "/",
 				MaxAge:   3600 * 24 * 2,
 				HttpOnly: true,
+				Secure:   true,
 			}
 			sess.Values["user"] = user.ID
 			sess.Save(c.Request(), c.Response())