Always set secure cookies if logging in via HTTPS

diff --git a/IkiWiki/CGI.pm b/IkiWiki/CGI.pm
index f2a32a9581077553d5b542fde40f428c15a5e41a..14193c33ae8a82fd2f69ad38ae176a33647cddfa 100644 (file)
--- a/IkiWiki/CGI.pm
+++ b/IkiWiki/CGI.pm
@@ -12,7 +12,7 @@ use Encode;
 sub printheader ($) {
        my $session=shift;
        
-       if ($config{sslcookie}) {
+       if ($ENV{HTTPS} || $config{sslcookie}) {
                print $session->header(-charset => 'utf-8',
                        -cookie => $session->cookie(-httponly => 1, -secure => 1));
        }