diff --git a/make/photon/prepare/templates/nginx/nginx.https.conf.jinja b/make/photon/prepare/templates/nginx/nginx.https.conf.jinja index e4ac93078..2d9e648e3 100644 --- a/make/photon/prepare/templates/nginx/nginx.https.conf.jinja +++ b/make/photon/prepare/templates/nginx/nginx.https.conf.jinja @@ -68,8 +68,7 @@ http { # When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings. proxy_set_header X-Forwarded-Proto $scheme; - # Add Secure flag when serving HTTPS - proxy_cookie_path / "/; secure"; + proxy_cookie_path / "/; HttpOnly; Secure"; proxy_buffering off; proxy_request_buffering off; @@ -83,7 +82,9 @@ http { # When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings. proxy_set_header X-Forwarded-Proto $scheme; - + + proxy_cookie_path / "/; Secure"; + proxy_buffering off; proxy_request_buffering off; } @@ -96,6 +97,8 @@ http { # When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings. proxy_set_header X-Forwarded-Proto $scheme; + + proxy_cookie_path / "/; Secure"; proxy_buffering off; proxy_request_buffering off; @@ -109,6 +112,8 @@ http { # When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings. proxy_set_header X-Forwarded-Proto $scheme; + + proxy_cookie_path / "/; Secure"; proxy_buffering off; proxy_request_buffering off; @@ -139,6 +144,8 @@ http { # When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings. proxy_set_header X-Forwarded-Proto $scheme; + proxy_cookie_path / "/; Secure"; + proxy_buffering off; proxy_request_buffering off; }