Set SESSION_COOKIE_SECURE for deployed environments.

This sets the "Secure" attribute on cookies sent to the client: https://flask.palletsprojects.com/en/1.1.x/config/#SESSION_COOKIE_SECURE
2020-01-29 14:39:56 -05:00
parent 7812da5eae
commit 6edc7b138b
3 changed files with 3 additions and 0 deletions
--- a/deploy/azure/atst-envvars-configmap.yml
+++ b/deploy/azure/atst-envvars-configmap.yml
@@ -32,6 +32,7 @@ data:
  REDIS_HOST: atat.redis.cache.windows.net:6380
  REDIS_TLS: "true"
  SESSION_COOKIE_DOMAIN: atat.code.mil
+  SESSION_COOKIE_SECURE: "true"
  STATIC_URL: https://atat-cdn.azureedge.net/static/
  TZ: UTC
  UWSGI_CONFIG_FULLPATH: /opt/atat/atst/uwsgi.ini