From 5c50638bd95cb4352ffadd398897fe96b01f12ae Mon Sep 17 00:00:00 2001
From: Hector Espert <hectorespertpardo@gmail.com>
Date: Sun, 22 Dec 2024 13:14:05 +0100
Subject: [PATCH] Fix secure cookies

---
 controller/utils/auth.go | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/controller/utils/auth.go b/controller/utils/auth.go
index 83f9cb991..9a4feff07 100644
--- a/controller/utils/auth.go
+++ b/controller/utils/auth.go
@@ -32,10 +32,14 @@ type auth struct {
 }
 
 func NewAuth(b string, store storage.Store) Auth {
+	cookieStore := sessions.NewCookieStore([]byte("reef-pi-key"))
+	cookieStore.Options.SameSite = http.SameSiteDefaultMode
+	cookieStore.Options.Secure = false
+
 	return &auth{
 		bucket:    b,
 		store:     store,
-		cookiejar: sessions.NewCookieStore([]byte("reef-pi-key")),
+		cookiejar: cookieStore,
 	}
 }