diff --git a/server/plugins/auth.ts b/server/plugins/auth.ts
index 7d804d4..3cc7cab 100644
--- a/server/plugins/auth.ts
+++ b/server/plugins/auth.ts
@@ -17,6 +17,9 @@ export default fp(async (fastify) => {
     try {
       const sessionId = auth.readSessionCookie(req.headers.cookie ?? '')
 
+      if (!sessionId)
+        return
+
       const { session, user } = await auth.validateSession(sessionId ?? '')
 
       if (session && session.fresh) {
diff --git a/server/routes/auth.ts b/server/routes/auth.ts
index 9099eef..8cfdf1a 100644
--- a/server/routes/auth.ts
+++ b/server/routes/auth.ts
@@ -70,8 +70,6 @@ export default function (fastify: FastifyInstance) {
       const session = await auth.createSession(user.id, {})
       const cookie = auth.createSessionCookie(session.id)
 
-      cookie.attributes.secure = false
-
       reply.setCookie(cookie.name, cookie.value, cookie.attributes)
 
       return {