From 5a0875a0ca6637327677cf76ff923ac70f7b5934 Mon Sep 17 00:00:00 2001
From: Asara <amarpreet@minhas.io>
Date: Sat, 5 Oct 2019 22:50:48 -0400
Subject: [PATCH] make cookies secure

---
 packages/auth/auth.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/auth/auth.go b/packages/auth/auth.go
index b8b7a24..2f453cc 100644
--- a/packages/auth/auth.go
+++ b/packages/auth/auth.go
@@ -172,9 +172,9 @@ func refresh(w http.ResponseWriter, r *http.Request) {
 
 func setCookies(w http.ResponseWriter, jwt string, expiration time.Time) string {
 	splitToken := strings.Split(jwt, ".")
-	dataCookie := http.Cookie{Name: "DataCookie", Value: strings.Join(splitToken[:2], "."), Expires: expiration, HttpOnly: false, Path: "/", Domain: ".sudoscientist.com", MaxAge: 360, Secure: false}
+	dataCookie := http.Cookie{Name: "DataCookie", Value: strings.Join(splitToken[:2], "."), Expires: expiration, HttpOnly: false, Path: "/", Domain: ".sudoscientist.com", MaxAge: 360, Secure: true}
 	http.SetCookie(w, &dataCookie)
-	signatureCookie := http.Cookie{Name: "SignatureCookie", Value: splitToken[2], Expires: expiration, HttpOnly: true, Path: "/", Domain: ".sudoscientist.com", MaxAge: 360, Secure: false}
+	signatureCookie := http.Cookie{Name: "SignatureCookie", Value: splitToken[2], Expires: expiration, HttpOnly: true, Path: "/", Domain: ".sudoscientist.com", MaxAge: 360, Secure: true}
 	http.SetCookie(w, &signatureCookie)
 	return strings.Join(splitToken[:2], ".")
 }