scandic/web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merged in fix/webview-auth-fix-3 (pull request #2848)

Browse Source 
Fix/webview auth fix 3

* feat(webview auth): set maxAge on cookie

* Changed samesite to lax


Approved-by: Anton Gunnarsson
This commit is contained in:
Linus Flood
2025-09-23 07:21:24 +00:00
parent c21d0dbc74
commit 7c4a0ec466
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
apps/scandic-web/middlewares/webView.ts
View File

@@ -156,8 +156,9 @@ async function handleWebviewRewrite({
res.cookies.set("webviewToken", decryptedData, {
httpOnly: true,
secure: true,
sameSite: "strict",
sameSite: "lax",
path: "/",
maxAge: 60 * 30, // 30 minutes
})
}
return res
@@ -185,8 +186,9 @@ async function handleWebviewRewrite({
res.cookies.set("webviewToken", decryptedData, {
httpOnly: true,
secure: true,
sameSite: "strict",
sameSite: "lax",
path: "/",
maxAge: 60 * 30, // 30 minutes
})
}
return res
@@ -203,8 +205,9 @@ async function handleWebviewRewrite({
res.cookies.set("webviewToken", decryptedData, {
httpOnly: true,
secure: true,
sameSite: "strict",
sameSite: "lax",
path: "/",
maxAge: 60 * 30, // 30 minutes
})
}
return res