From 30b5ff0d96a25ef21cccaebd242ef69b7c4a84d1 Mon Sep 17 00:00:00 2001
From: Sheogorath
Date: Wed, 28 Mar 2018 12:49:03 +0200
Subject: Add session data to env vars

Currently the session secret can only be set by config.json or docker
secrets. This creates a problem on Heroku hosted instances that can not
set a session secret.

Since we automatically generate them on startup this results in an
logout of all users on every config change in Heroku.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
---
 app.json | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'app.json')

diff --git a/app.json b/app.json
index b2116eb6..54ce160e 100644
--- a/app.json
+++ b/app.json
@@ -23,6 +23,10 @@
             "description": "Specify database type. See sequelize available databases. Default using postgres",
             "value": "postgres"
         },
+        "HMD_SESSION_SECRET": {
+            "description": "Secret used to secure session cookies.",
+            "required": false
+        },
         "HMD_HSTS_ENABLE": {
             "description": "whether to also use HSTS if HTTPS is enabled",
             "required": false
-- 
cgit v1.2.3