diff --git a/.env.example b/.env.example
index 3c742af..2dd2cae 100644
--- a/.env.example
+++ b/.env.example
@@ -6,3 +6,4 @@
 DB_HOST=localhost
 DB_PORT=5432
 DB_NAME=skrytka
+# COOKIE_SECRET=SOMESECRET
diff --git a/app.js b/app.js
index a9a6002..dc118fb 100644
--- a/app.js
+++ b/app.js
@@ -56,7 +56,7 @@ app.use(session({
 		pgPromise: db,
 		tableName: 'user_session'
 	}),
-	secret: 'tujakistajnysekretnietakijakto',
+	secret: `${process.env.COOKIE_SECRET}`,
 	resave: false,
 	saveUninitialized: false,
 	cookie: {