メンテナンストークンにSecure属性を設定する

EC-CUBE · Jun 14, 2022 · 42235e0 · 42235e0
1 parent f3e2a56
commit 42235e0
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/src/Eccube/EventListener/MaintenanceListener.php b/src/Eccube/EventListener/MaintenanceListener.php
@@ -54,10 +54,10 @@ public function onResponse(ResponseEvent $event)
 
         $user = $this->requestContext->getCurrentUser();
         if ($user instanceof Entity\Member && $this->requestContext->isAdmin()) {
-            $cookie = new Cookie(
+            $cookie = (new Cookie(
                 SystemService::MAINTENANCE_TOKEN_KEY,
                 $this->systemService->getMaintenanceToken()
-            );
+            ))->withSecure(true);
             $response->headers->setCookie($cookie);
         }
     }