Update secure cookie setting to conditionally use HTTPS protocol in authentication flows

frontend/src/hooks.server.ts

@@ -47,7 +47,7 @@ export const authHook: Handle = async ({ event, resolve }) => {
 						path: '/',
 						httpOnly: true,
 						sameSite: 'lax',
-						secure: true,
+						secure: event.url.protocol === 'https:',
 						expires: expiryDate
 					});
 				}

frontend/src/routes/login/+page.server.ts

@@ -106,7 +106,7 @@ function handleSuccessfulLogin(event: RequestEvent<RouteParams, '/login'>, respo
 				path: '/',
 				httpOnly: true,
 				sameSite: 'lax',
-				secure: true,
+				secure: event.url.protocol === 'https:',
 				expires: new Date(expiryString)
 			});
 		}

frontend/src/routes/signup/+page.server.ts

@@ -93,7 +93,7 @@ export const actions: Actions = {
 						path: '/',
 						httpOnly: true,
 						sameSite: 'lax',
-						secure: true,
+						secure: event.url.protocol === 'https:',
 						expires: expiryDate
 					});
 				}