Skip to content

Commit 6ce8853

Browse files
aahnikaahnik
committed
[backend] set domain in cookies
1 parent 3aacf16 commit 6ce8853

File tree

3 files changed

+18
-3
lines changed

3 files changed

+18
-3
lines changed

server/src/auth/auth.controller.ts

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,6 +18,8 @@ import { UserPermsOutDto } from 'src/users/dto/user-perms-out.dto';
1818
import { Response } from 'express';
1919
import { AuthorizedRequest } from './entities/authorized-request.entity';
2020
import { Throttle } from '@nestjs/throttler';
21+
import { appConfig } from 'src/config';
22+
2123
@Throttle({ default: { limit: 2, ttl: 60000 } })
2224
@ApiTags('auth')
2325
@Controller('auth')
@@ -31,7 +33,10 @@ export class AuthController {
3133
@Res({ passthrough: true }) res: Response,
3234
) {
3335
const token = await this.service.login(loginDto.email, loginDto.password);
34-
res.cookie('accessToken', token.access_token, { sameSite: 'none' });
36+
res.cookie('accessToken', token.access_token, {
37+
sameSite: 'none',
38+
domain: appConfig.frontendDomain,
39+
});
3540
return token;
3641
}
3742

@@ -44,6 +49,7 @@ export class AuthController {
4449
const token = await this.service.register(registerDto);
4550
res.cookie('accessToken', token.access_token, {
4651
sameSite: 'none',
52+
domain: appConfig.frontendDomain,
4753
});
4854
return token;
4955
}

server/src/config.ts

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -23,6 +23,8 @@ export const appConfig = {
2323
port: parseInt(fromEnv('REDIS_PORT')),
2424
},
2525

26+
frontendDomain: fromEnv('FRONTEND_DOMAIN'),
27+
2628
debug: fromEnv('DEBUG', 'false').toLowerCase() === 'true',
2729
};
2830

server/src/oauth/oauth.controller.ts

Lines changed: 9 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,7 @@ import { AuthService } from 'src/auth/auth.service';
99
import { OAuthProvider } from 'src/users/dto/find-or-create-user.dto';
1010
import { Response } from 'express';
1111
import { oauthConfig } from './config';
12+
import { appConfig } from 'src/config';
1213

1314
@ApiTags('oauth')
1415
@Public()
@@ -39,7 +40,10 @@ export class OauthController {
3940
});
4041

4142
const token = await this.authService.generateJwtToken(user.email);
42-
res.cookie('accessToken', token, { sameSite: 'none' });
43+
res.cookie('accessToken', token, {
44+
sameSite: 'none',
45+
domain: appConfig.frontendDomain,
46+
});
4347
res.redirect(oauthConfig.frontendUrl);
4448
}
4549

@@ -61,7 +65,10 @@ export class OauthController {
6165
email: req.user.emails[0].value,
6266
});
6367
const token = await this.authService.generateJwtToken(user.email);
64-
res.cookie('accessToken', token, { sameSite: 'none' });
68+
res.cookie('accessToken', token, {
69+
sameSite: 'none',
70+
domain: appConfig.frontendDomain,
71+
});
6572
res.redirect(oauthConfig.frontendUrl);
6673
}
6774
}

0 commit comments

Comments
 (0)