From 5630c3a638566ef3d24a8c27b7101d8cc50fc278 Mon Sep 17 00:00:00 2001
From: Eric Mill <eric.mill@gsa.gov>
Date: Wed, 3 Dec 2014 14:11:10 -0500
Subject: [PATCH] fix a bug I introduced, but also another bug

---
 lib/site-inspector/headers.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/site-inspector/headers.rb b/lib/site-inspector/headers.rb
index 8973bad..2c276e9 100644
--- a/lib/site-inspector/headers.rb
+++ b/lib/site-inspector/headers.rb
@@ -50,10 +50,10 @@ def xss_protection?
 
   def secure_cookies?
     return nil if !response || !has_cookies?
-    cookie = header_from(response, "Set-Cookie")
+    cookie = header_from("Set-Cookie")
     cookie = cookie.first if cookie.is_a?(Array)
     marked_secure = !!(cookie.downcase =~ /secure/)
-    marked_http_only = !!(cookie.downcase =~ /HttpOnly/)
+    marked_http_only = !!(cookie.downcase =~ /httponly/)
     marked_secure and marked_http_only
   end