fix(api): csrf over http in development (#39114)
parent
0116afd18b
commit
5a80b83579
|
@ -5,7 +5,7 @@ export default function() {
|
|||
cookie: {
|
||||
domain: process.env.COOKIE_DOMAIN || 'localhost',
|
||||
sameSite: 'strict',
|
||||
secure: true
|
||||
secure: process.env.FREECODECAMP_NODE_ENV === 'production'
|
||||
}
|
||||
});
|
||||
return function csrf(req, res, next) {
|
||||
|
|
Loading…
Reference in New Issue