Use secure cookies only in prod

alexcrichton · alexcrichton · commit 3d2269867fa3 · 2014-11-19T15:06:28.000-08:00
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/app/routes/login.js b/app/routes/login.js
@@ -24,7 +24,7 @@ export default Ember.Route.extend({
             }
             var data = response.data;
             if (data.errors) {
-                var error = "Failed to log in: " + data.errors[0];
+                var error = "Failed to log in: " + data.errors[0].detail;
                 self.controllerFor('application').set('flashError', error);
                 return;
             }
diff --git a/src/lib.rs b/src/lib.rs
@@ -126,7 +126,8 @@ pub fn middleware(app: Arc<App>) -> MiddlewareBuilder {
     m.around(util::Head::new());
     m.add(conduit_conditional_get::ConditionalGet);
     m.add(conduit_cookie::Middleware::new(app.session_key.as_bytes()));
-    m.add(conduit_cookie::SessionMiddleware::new("cargo_session"));
+    m.add(conduit_cookie::SessionMiddleware::new("cargo_session",
+                                                 env == Env::Production));
     m.add(app::AppMiddleware::new(app));
     m.add(db::TransactionMiddleware);
     m.add(user::Middleware);

Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,7 @@ export default Ember.Route.extend({`
`24`	`24`	`}`
`25`	`25`	`var data = response.data;`
`26`	`26`	`if (data.errors) {`
`27`		`- var error = "Failed to log in: " + data.errors[0];`
	`27`	`+ var error = "Failed to log in: " + data.errors[0].detail;`
`28`	`28`	`self.controllerFor('application').set('flashError', error);`
`29`	`29`	`return;`
`30`	`30`	`}`