From 3f57b196b4d26dcbbefc3f217028fc534af1df3b Mon Sep 17 00:00:00 2001
From: "Christopher C. Wells" <git@chris-wells.net>
Date: Thu, 16 Sep 2021 20:44:05 -0700
Subject: [PATCH] Disable secure cookies

This feature breaks login on non-HTTPs connections. Additional work needed.
---
 babybuddy/settings/base.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/babybuddy/settings/base.py b/babybuddy/settings/base.py
index 3a6ddc8b..31767f3e 100644
--- a/babybuddy/settings/base.py
+++ b/babybuddy/settings/base.py
@@ -241,11 +241,11 @@ if os.environ.get('SECURE_PROXY_SSL_HEADER'):
 
 # https://docs.djangoproject.com/en/3.2/topics/http/sessions/#settings
 SESSION_COOKIE_HTTPONLY = True
-SESSION_COOKIE_SECURE = True
+# SESSION_COOKIE_SECURE = True
 
 # https://docs.djangoproject.com/en/3.2/ref/csrf/#settings
 CSRF_COOKIE_HTTPONLY = True
-CSRF_COOKIE_SECURE = True
+# CSRF_COOKIE_SECURE = True
 
 # https://docs.djangoproject.com/en/3.2/topics/auth/passwords/
 AUTH_PASSWORD_VALIDATORS = [