From d9e32aa64e956593c0bfee5a194f1736a792288a Mon Sep 17 00:00:00 2001
From: Simon Coe <simon.coe@iress.com>
Date: Fri, 22 Sep 2023 17:34:35 +0100
Subject: [PATCH] NONCE and CV cookies as `secure` for pkce

---
 authn/pkce.index.js | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/authn/pkce.index.js b/authn/pkce.index.js
index 253636f..6862646 100755
--- a/authn/pkce.index.js
+++ b/authn/pkce.index.js
@@ -328,14 +328,16 @@ function redirect(request, headers, callback) {
           "key": "Set-Cookie",
           "value" : cookie.serialize('NONCE', n[1], {
             path: '/',
-            httpOnly: true
+            httpOnly: true,
+            secure: true
           })
         },
         {
           "key": "Set-Cookie",
           "value" : cookie.serialize('CV', challenge[0], {
             path: '/',
-            httpOnly: true
+            httpOnly: true,
+            secure: true
           })
         }
       ],