From 0b1214e3f61a99df90b3ba2428414917be91f098 Mon Sep 17 00:00:00 2001
From: Alex J <alexj@blackduck.com>
Date: Thu, 9 Oct 2025 17:11:25 +0530
Subject: [PATCH] OTWO-7496 Secure remember_token cookie

---
 config/initializers/clearance.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config/initializers/clearance.rb b/config/initializers/clearance.rb
index 89af59da4..732b35493 100644
--- a/config/initializers/clearance.rb
+++ b/config/initializers/clearance.rb
@@ -4,6 +4,7 @@
   config.routes = false
   config.mailer_sender = 'mailer@openhub.net'
   config.password_strategy = PasswordStrategy
+  config.secure_cookie = Rails.env.staging? || Rails.env.production?
   config.redirect_url = '/accounts/me'
   config.rotate_csrf_on_sign_in = true
   config.sign_in_guards = [Account::DisabledGuard]