Do not use secure cookie in development

This can cause problems when localhost is resolved differently (as name or IP v4/6 address) and the site is then not considered to be the same.
WebwareForPython · Jan 27, 2021 · f9779d7 · f9779d7
1 parent 7f0561b
commit f9779d7
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/webware/Configs/Application.config b/webware/Configs/Application.config
@@ -68,7 +68,7 @@ UseAutomaticPathSessions = False
 UseCookieSessions = True
 # If you rewrite the URL, you may need to specify this explicitly:
 SessionCookiePath = None  # the servlet path is used if not specified
-SecureSessionCookie = True  # use a secure cookie for HTTPS connections
+SecureSessionCookie = not Development  # use a secure cookie for HTTPS connections
 HttpOnlySessionCookie = True  # session cookie should be HttpOnly
 SameSiteSessionCookie = 'Strict'  # set SameSite attribute on session cookie