alex/voyage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update secure cookie setting to conditionally use HTTPS protocol in authentication flows

Browse Source
This commit is contained in:
Sean Morley
2024-12-29 12:38:54 -05:00
parent 8716efb613
commit b5ac66a1cc
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
frontend/src/hooks.server.ts
View File

@@ -47,7 +47,7 @@ export const authHook: Handle = async ({ event, resolve }) => {
path: '/',
httpOnly: true,
sameSite: 'lax',
secure: true,
secure: event.url.protocol === 'https:',
expires: expiryDate
});
}