Add SESSION_SECRET env var to .env

.env.example

@@ -8,8 +8,13 @@ TIMEZONE=America/Edmonton
 # Public uploader page (optional)
 PUBLIC_UPLOAD_PAGE_ENABLED=true
 
-# Local dedupe cache (SQLite)
+# Login cookie session secret
-#STATE_DB=./data/state.db
+# Set this to something random if you want login sessions
+# to persist between container or app restarts.
+#SESSION_SECRET=
+
+# Custom DB location
+#STATE_DB=
 
 # Base URL for generating absolute invite links
 # Recommended for production, also sets CORS headers