Add sameSite=none #293

2026-01-12 17:22:59 +08:00 · 2020-07-01 15:52:19 +01:00
parent c574f9d817
commit 450f280b7a
1 changed files with 4 additions and 2 deletions
--- a/src/shared/jwt.ts
+++ b/src/shared/jwt.ts
@@ -164,14 +164,16 @@ export const setCookie = (
  res.cookie('refresh_token', refresh_token, {
    httpOnly: true,
    maxAge,
-    signed: Boolean(COOKIE_SECRET)
+    signed: Boolean(COOKIE_SECRET),
+    sameSite: 'none'
  })

  // set permission variables cookie
  res.cookie('permission_variables', permission_variables, {
    httpOnly: true,
    maxAge,
-    signed: Boolean(COOKIE_SECRET)
+    signed: Boolean(COOKIE_SECRET),
+    sameSite: 'none'
  })
 }