fix(server): --session-cookie-secure flag; scope+char-count password; invalid-email test

2026-06-02 15:16:46 +02:00
parent dbff95c2a9
commit 369eee4098
3 changed files with 31 additions and 14 deletions
@@ -21,6 +21,10 @@ pub struct Config {

    /// Send the session cookie with the `Secure` attribute (HTTPS-only). Disable
    /// only for plain-HTTP self-hosting behind no TLS at all.
-    #[arg(long, env = "SESSION_COOKIE_SECURE", default_value_t = true)]
+    #[arg(
+        long = "session-cookie-secure",
+        env = "SESSION_COOKIE_SECURE",
+        default_value_t = true
+    )]
    pub cookie_secure: bool,
 }