github/directus
1
0
Fork 0
mirror of https://github.com/directus/directus.git synced 2026-01-23 03:08:08 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add missing cookie options to cookie cleanup on logout (#5626)

Browse Source
This commit is contained in:
Pascal Jufer
2021-05-12 18:34:58 +02:00
committed by GitHub
parent 7bdb220bd2
commit 44ffd60174
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
api/src/controllers/auth.ts
View File

@@ -146,7 +146,10 @@ router.post(
if (req.cookies.directus_refresh_token) {
res.clearCookie('directus_refresh_token', {
httpOnly: true,
domain: env.REFRESH_TOKEN_COOKIE_DOMAIN,
secure: env.REFRESH_TOKEN_COOKIE_SECURE ?? false,
sameSite: (env.REFRESH_TOKEN_COOKIE_SAME_SITE as 'lax' | 'strict' | 'none') || 'strict',
});
}