Merge pull request #16 from michaelwittig/master

secureProxy option added
pillarjs · Sep 14, 2012 · 4f8d442 · 4f8d442
2 parents b167c7c + 1a90216
commit 4f8d442
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -59,6 +59,7 @@ If the _options_ object is provided, it will be used to generate the outbound co
 * `path`: a string indicating the path of the cookie (`/` by default).
 * `domain`: a string indicating the domain of the cookie (no default).
 * `secure`: a boolean indicating whether the cookie is only to be sent over HTTPS (`false` by default for HTTP, `true` by default for HTTPS).
+* `secureProxy`: a boolean indicating whether the cookie is only to be sent over HTTPS (use this if you handle SSL not in your node process).
 * `httpOnly`: a boolean indicating whether the cookie is only to be sent over HTTP(S), and not made available to client JavaScript (`true` by default).
 * `signed`: a boolean indicating whether the cookie is to be signed (`false` by default). If this is true, another cookie of the same name with the `.sig` suffix appended will also be sent, with a 27-byte url-safe base64 SHA1 value representing the hash of _cookie-name_=_cookie-value_ against the first [Keygrip](https://github.com/jed/keygrip) key. This signature key is used to detect tampering the next time a cookie is received.
 
@@ -112,4 +113,4 @@ Copyright
 
 Copyright (c) 2012 Jed Schmidt. See LICENSE.txt for details.
 
-Send any questions or comments [here](http://twitter.com/jedschmidt).
+Send any questions or comments [here](http://twitter.com/jedschmidt).
diff --git a/lib/cookies.js b/lib/cookies.js
@@ -50,6 +50,7 @@ Cookies.prototype = {
 
     cookie.secure = secure
     if (opts && "secure" in opts) cookie.secure = opts.secure
+    if (opts && "secureProxy" in opts) cookie.secure = opts.secureProxy
     headers.push(cookie.toHeader())
 
     if (opts && signed) {