From e5340d2a7a341c2b9ec1461baa616a50cb872c4b Mon Sep 17 00:00:00 2001
From: Ahmad Farhat <ahmad.af.farhat@gmail.com>
Date: Mon, 24 Aug 2020 14:19:46 -0400
Subject: [PATCH] Add env variables to change same_site and secure (#2040)

---
 config/initializers/session_store.rb | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/config/initializers/session_store.rb b/config/initializers/session_store.rb
index 02b958a7..cdb63852 100644
--- a/config/initializers/session_store.rb
+++ b/config/initializers/session_store.rb
@@ -5,7 +5,9 @@
 # The key base was updated as part of 2.3
 if Rails.configuration.loadbalanced_configuration
     Rails.application.config.session_store :cookie_store, key: '_greenlight-2_3_session',
-        domain: ENV['GREENLIGHT_SESSION_DOMAIN'] || 'blindside-dev.com'
+        domain: ENV['GREENLIGHT_SESSION_DOMAIN'] || 'blindside-dev.com',
+        secure: ENV['COOKIES_SECURE_OFF'].blank?,
+        same_site: ENV['COOKIES_SAME_SITE'].presence || 'None'
 else
     Rails.application.config.session_store :cookie_store, key: '_greenlight-2_3_session'
 end