Cookie Config
For SRM 2023.12.5 and later, the prop auth.cookie.secure is available and gives control for setting the secure flag on the session cookie used by SRM.
Native HTTP installs will have this prop set to false and HTTPS installs will have this set to true.
If not using a native install, and HTTPS is being used between the client and SRM, this attribute will need to be manually set to true in the props file.
auth.cookie.secure- [default: false] When SRM is communicating over HTTPS, the secure flag on the session cookie will always be set regardless of the value of this prop. When SRM is communicating over HTTP, the value of this prop controls if the session cookie has this flag set. Wheretruemeans the secure flag is set.