Added COOKIE_OPTIONS to /refresh (#15302)

* Added COOKIE_OPTIONS to /refresh * Remove unused import Co-authored-by: rijkvanzanten <rijkvanzanten@me.com>
2026-04-25 03:00:53 -04:00 · 2022-08-28 22:53:05 +03:00
parent 701e540680
commit 5e8137367b
1 changed files with 2 additions and 8 deletions
--- a/api/src/controllers/auth.ts
+++ b/api/src/controllers/auth.ts
@@ -1,5 +1,4 @@
 import { Router } from 'express';
-import ms from 'ms';
 import env from '../env';
 import { InvalidPayloadException } from '../exceptions';
 import { respond } from '../middleware/respond';
@@ -15,6 +14,7 @@ import {
 } from '../auth/drivers';
 import { DEFAULT_AUTH_PROVIDER } from '../constants';
 import { getIPFromReq } from '../utils/get-ip-from-req';
+import { COOKIE_OPTIONS } from '../constants';

 const router = Router();

@@ -86,13 +86,7 @@ router.post(
 		}

 		if (mode === 'cookie') {
-			res.cookie(env.REFRESH_TOKEN_COOKIE_NAME, refreshToken, {
-				httpOnly: true,
-				domain: env.REFRESH_TOKEN_COOKIE_DOMAIN,
-				maxAge: ms(env.REFRESH_TOKEN_TTL as string),
-				secure: env.REFRESH_TOKEN_COOKIE_SECURE ?? false,
-				sameSite: (env.REFRESH_TOKEN_COOKIE_SAME_SITE as 'lax' | 'strict' | 'none') || 'strict',
-			});
+			res.cookie(env.REFRESH_TOKEN_COOKIE_NAME, refreshToken, COOKIE_OPTIONS);
 		}

 		res.locals.payload = payload;