diff --git a/WebgisPovertyMapping/index.php b/WebgisPovertyMapping/index.php
index 9f4c42a..eb60a14 100644
--- a/WebgisPovertyMapping/index.php
+++ b/WebgisPovertyMapping/index.php
@@ -2793,6 +2793,29 @@ $map_module_urls = array_map(function ($module) {
+
+
+
diff --git a/WebgisPovertyMapping/tests/test_session_cookie_security.php b/WebgisPovertyMapping/tests/test_session_cookie_security.php
index cb161be..ea64750 100644
--- a/WebgisPovertyMapping/tests/test_session_cookie_security.php
+++ b/WebgisPovertyMapping/tests/test_session_cookie_security.php
@@ -20,7 +20,9 @@ function check($label, $ok) {
check('cookie httponly enabled', strpos($helper, "'httponly' => true") !== false);
check('cookie samesite strict enabled', strpos($helper, "'samesite' => 'Strict'") !== false);
-check('cookie secure detects HTTPS', strpos($helper, "'secure' => (!empty(\$_SERVER['HTTPS']) && \$_SERVER['HTTPS'] !== 'off')") !== false);
+$has_secure_detect = (strpos($helper, '\'secure\' => $is_https') !== false && strpos($helper, '$is_https =') !== false)
+ || strpos($helper, '\'secure\' => (!empty($_SERVER[\'HTTPS\']) && $_SERVER[\'HTTPS\'] !== \'off\')') !== false;
+check('cookie secure detects HTTPS', $has_secure_detect);
echo "\n--- {$pass} passed, {$fail} failed ---\n";
exit($fail > 0 ? 1 : 0);