feat(auth): add ADMIN_COOKIE_SECURE configuration for enhanced security

2026-04-08 00:04:23 +09:00 · 2026-04-08 00:04:23 +09:00 · b06f4f0c62
commit b06f4f0c62
parent da258f3f81
4 changed files with 4 additions and 1 deletions
--- a/.env.example
+++ b/.env.example
@ -8,6 +8,7 @@ ADMIN_AUTH_MODE=both
 ADMIN_USERNAME=admin
 # Example for password "change-me": sha256$e2186dbdb1bb4193608605e84f33208765b5693b55edd4f730a719a100eeea6f
 ADMIN_PASSWORD_HASH=sha256$e2186dbdb1bb4193608605e84f33208765b5693b55edd4f730a719a100eeea6f
+ADMIN_COOKIE_SECURE=true
 ADMIN_SESSION_SECRET=replace-with-a-long-random-secret
 ADMIN_SESSION_TTL_HOURS=12
 ADMIN_API_TOKEN_TTL_DAYS=30