fix(middleware.session): 尝试修复 secure 字段未设置的问题

2026-01-15 05:55:07 +08:00 · 2023-07-11 17:30:44 +08:00
parent deaabfaebd
commit 8dec90afd8
1 changed files with 1 additions and 4 deletions
--- a/src/Middleware/SessionMiddleware.php
+++ b/src/Middleware/SessionMiddleware.php
@@ -87,10 +87,7 @@ class SessionMiddleware implements MiddlewareInterface
            expire: $this->getCookieExpirationDate(),
            path: $this->config->get('session.options.path', '/'),
            domain: $this->config->get('session.options.domain', $request->getUri()->getHost()),
-            secure: $this->config->get(
+            secure: strtolower($request->getUri()->getScheme()) === 'https',
                'session.options.secure',
                strtolower($request->getUri()->getScheme()) === 'https'
            ),
            httpOnly: true,
            sameSite: $this->config->get('session.options.samesite', Cookie::SAMESITE_LAX)
        );