Moving from openresty to nginx+modsec for HTTP/2 Rapid Reset reasons

roles/Foundation/templates/app.ini.j2

@@ -448,7 +448,7 @@ PROVIDER_CONFIG   = data/sessions
 ; Session cookie name
 COOKIE_NAME       = i_like_gitea
 ; If you use session in https only, default is false
-COOKIE_SECURE     = false
+COOKIE_SECURE     = true
 ; Enable set cookie, default is true
 ENABLE_SET_COOKIE = true
 ; Session GC time interval in seconds, default is 86400 (1 day)