From 5707e4c9146cd7785cfad992a7d320a0552b7f11 Mon Sep 17 00:00:00 2001
From: Sebastian Serth <Sebastian.Serth@hpi.de>
Date: Fri, 15 Jul 2022 00:35:09 +0200
Subject: [PATCH] Use secure cookies for production and staging

---
 config/initializers/session_store.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config/initializers/session_store.rb b/config/initializers/session_store.rb
index 234f4f22..57edb098 100644
--- a/config/initializers/session_store.rb
+++ b/config/initializers/session_store.rb
@@ -5,4 +5,5 @@
 Rails.application.config.session_store :cookie_store,
   key: '_code_ocean_session',
   expire_after: 1.month,
+  secure: Rails.env.production? || Rails.env.staging?,
   path: Rails.application.config.relative_url_root