From f3a5aa4c066999abf2dfff57d7c6a7da6b55b590 Mon Sep 17 00:00:00 2001
From: Mauricio Baeza <git@elmau.net>
Date: Tue, 30 Jan 2018 23:40:33 -0600
Subject: [PATCH] Cookies no seguras cuando no hay HTTPS

---
 source/app/main.py     | 5 +++--
 source/app/settings.py | 9 +++++++--
 2 files changed, 10 insertions(+), 4 deletions(-)

diff --git a/source/app/main.py b/source/app/main.py
index 42127ee..b43ff83 100644
--- a/source/app/main.py
+++ b/source/app/main.py
@@ -20,7 +20,7 @@ from controllers.main import (AppEmpresas,
 )
 
 
-from settings import DEBUG, MV, PATH_SESSIONS
+from settings import DEBUG, MV, NO_HTTPS, PATH_SESSIONS
 
 
 db = StorageEngine()
@@ -68,7 +68,8 @@ session_options = {
     'session.data_dir': PATH_SESSIONS['data'],
     'session.lock_dir': PATH_SESSIONS['lock'],
 }
-if DEBUG or MV:
+# ~ Si no usas (NO deberías) certificados en tu servidor, ponla siempre en False
+if DEBUG or MV or NO_HTTPS:
     session_options['session.secure'] = False
 
 app = SessionMiddleware(api, session_options)
diff --git a/source/app/settings.py b/source/app/settings.py
index 487caae..5d49065 100644
--- a/source/app/settings.py
+++ b/source/app/settings.py
@@ -12,7 +12,7 @@ from conf import DEBUG, MV, LOG_PATH
 try:
     from conf import DEFAULT_PASSWORD
 except ImportError:
-    DEFAULT_PASSWORD = 'blades3.3'
+    DEFAULT_PASSWORD = 'salgueiro3.3'
 
 try:
     from conf import SEAFILE_SERVER
@@ -24,9 +24,14 @@ try:
 except ImportError:
     TITLE_APP = 'Empresa Libre'
 
+try:
+    from conf import NO_HTTPS
+except ImportError:
+    NO_HTTPS = True
+
 
 DEBUG = DEBUG
-VERSION = '1.2.0'
+VERSION = '1.5.0'
 EMAIL_SUPPORT = ('soporte@empresalibre.net',)
 
 BASE_DIR = os.path.abspath(os.path.dirname(__file__))