From 1ca56b70399bdc9f63f405a5e9af32c3a337e6db Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Fri, 3 Jan 2025 09:13:14 -0700
Subject: [PATCH] Add cookie secure flag

Signed-off-by: Tommy <contact@tommytran.io>
---
 etc/nginx/conf.d/default.conf | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/etc/nginx/conf.d/default.conf b/etc/nginx/conf.d/default.conf
index 045f051..74042d5 100644
--- a/etc/nginx/conf.d/default.conf
+++ b/etc/nginx/conf.d/default.conf
@@ -36,13 +36,16 @@ ssl_session_ticket_key session-ticket-keys/1.key;
 ## ssl_trusted_certificate
 ## ssl_stapling_file
 
-# Disable server tokens
-server_tokens off;
+# Cookie flags
+proxy_cookie_flags ~ secure;
 
 # Disable compression
 ## Mitigates oracle attacks
 gzip off;
 
+# Disable server tokens
+server_tokens off;
+
 server {
     listen ipv4_1:80 default_server;
     listen [ipv6_1]:80 default_server;