From ae0953e4e5ada0abd27a921e9ad9962b89ba3181 Mon Sep 17 00:00:00 2001
From: aaron <>
Date: Thu, 27 Feb 2025 16:50:33 +0800
Subject: [PATCH] update

---
 app/core/security.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/app/core/security.py b/app/core/security.py
index f67a814..f67d50d 100644
--- a/app/core/security.py
+++ b/app/core/security.py
@@ -26,7 +26,7 @@ def set_jwt_cookie(response: Response, token: str):
         key="access_token",
         value=f"Bearer {token}",
         httponly=True,  # 防止JavaScript访问
-        secure=not settings.DEBUG,  # 生产环境使用HTTPS
+        # secure=not settings.DEBUG,  # 生产环境使用HTTPS
         samesite="lax",  # CSRF保护
         max_age=None if settings.ACCESS_TOKEN_EXPIRE_MINUTES is None 
                else settings.ACCESS_TOKEN_EXPIRE_MINUTES * 60
@@ -37,7 +37,7 @@ def clear_jwt_cookie(response: Response):
     response.delete_cookie(
         key="access_token",
         httponly=True,
-        secure=not settings.DEBUG,
+        # secure=not settings.DEBUG,
         samesite="lax"
     )