Make session cookie security configurable

2026-05-20 21:53:51 +02:00
parent 637cfe967f
commit dde83a2417
2 changed files with 15 additions and 1 deletions
--- a/README.md
+++ b/README.md
@@ -32,6 +32,11 @@ docker compose up --build

 The app expects a MariaDB instance configured through environment variables.

+### Session and Cookie Env Vars
+
+- `SESSION_TTL_SECONDS` (default: `86400`)
+- `SESSION_COOKIE_SECURE` (default: `false`, set `true` in production HTTPS)
+
 ## Gitea CI/CD

 Add these secrets in Gitea: