From 0c414b56458744faceea27250950e57ba3a8a84a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E6=9D=8E=E4=B8=9C=E4=BA=91?= <dongyu.li@luxcreo.ai>
Date: Wed, 12 Jul 2023 11:24:45 +0800
Subject: [PATCH] =?UTF-8?q?fix(session):=20=E4=BF=AE=E5=A4=8D=E4=B8=80?=
 =?UTF-8?q?=E4=B8=AA=E8=AF=AD=E6=B3=95=E9=94=99=E8=AF=AF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

=== 优先级高于 ??
---
 src/Middleware/SessionMiddleware.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Middleware/SessionMiddleware.php b/src/Middleware/SessionMiddleware.php
index fbec21b..485fa2f 100644
--- a/src/Middleware/SessionMiddleware.php
+++ b/src/Middleware/SessionMiddleware.php
@@ -84,7 +84,7 @@ class SessionMiddleware implements MiddlewareInterface
         $protocol = $request->hasHeader('x-forwarded-proto')
             ? $request->getHeaderLine('x-forwarded-proto')
             : $request->getUri()->getScheme();
-        $secure = $this->config->get('session.options.secure') ?? $protocol === 'https';
+        $secure = $this->config->get('session.options.secure', $protocol) === 'https';
 
         $samesite = $this->config->get('session.options.samesite');
         if (!$secure && $samesite === Cookie::SAMESITE_NONE) {