From 76b31eda78d53f7866040f897376fa514e7b1202 Mon Sep 17 00:00:00 2001
From: Evgeny Vlasov <evalvlasov@gmail.com>
Date: Fri, 12 Mar 2021 15:56:36 +0300
Subject: [PATCH] add cookie's domain to another endpoints (#4499)

---
 api/src/controllers/auth.ts | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/api/src/controllers/auth.ts b/api/src/controllers/auth.ts
index 1d351b8360..118774477c 100644
--- a/api/src/controllers/auth.ts
+++ b/api/src/controllers/auth.ts
@@ -111,6 +111,7 @@ router.post(
 		if (mode === 'cookie') {
 			res.cookie('directus_refresh_token', refreshToken, {
 				httpOnly: true,
+				domain: env.REFRESH_TOKEN_COOKIE_DOMAIN,
 				maxAge: ms(env.REFRESH_TOKEN_TTL as string),
 				secure: env.REFRESH_TOKEN_COOKIE_SECURE ?? false,
 				sameSite: (env.REFRESH_TOKEN_COOKIE_SAME_SITE as 'lax' | 'strict' | 'none') || 'strict',
@@ -264,6 +265,7 @@ router.get(
 		if (redirect) {
 			res.cookie('directus_refresh_token', refreshToken, {
 				httpOnly: true,
+				domain: env.REFRESH_TOKEN_COOKIE_DOMAIN,
 				maxAge: ms(env.REFRESH_TOKEN_TTL as string),
 				secure: env.REFRESH_TOKEN_COOKIE_SECURE ?? false,
 				sameSite: (env.REFRESH_TOKEN_COOKIE_SAME_SITE as 'lax' | 'strict' | 'none') || 'strict',