admin/n8n-enterprise-unlocked
1
0
Fork 0
mirror of https://github.com/Abdulazizzn/n8n-enterprise-unlocked.git synced 2025-12-18 10:31:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(core): set JWT authentication token sameSite policy to lax (#4425)

Browse Source 
set authentication token sameSite policy to lax
This commit is contained in:
Michael Auerswald
2022-10-24 15:05:30 +02:00
committed by GitHub
parent 5745027cee
commit 1f4eaeb3ae
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
packages/cli/src/UserManagement/auth/jwt.ts
View File

@@ -63,5 +63,9 @@ export async function resolveJwt(token: string): Promise<User> {
export async function issueCookie(res: Response, user: User): Promise<void> { export async function issueCookie(res: Response, user: User): Promise<void> {
const userData = issueJWT(user); const userData = issueJWT(user);
res.cookie(AUTH_COOKIE_NAME, userData.token, { maxAge: userData.expiresIn, httpOnly: true }); res.cookie(AUTH_COOKIE_NAME, userData.token, {
maxAge: userData.expiresIn,
httpOnly: true,
sameSite: 'lax',
});
} }