qowevisa/fin-check-front
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Apply changes to /api/auth/login route to change cookies

Browse Source
This commit is contained in:
qowevisa 2024-11-08 17:13:39 +02:00
parent 8bd291beec
commit 589f9f1a36
1 changed files with 2 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/routes/api/auth/login/+server.js
View File

@ -16,21 +16,11 @@ export async function POST({ request, cookies }) {
console.log("in POST3")
try {
console.log("in POST4")
const loginResponse = await login(username, password); // Call the backend login
const loginResponse = await login(username, password, cookies);
console.log("loginResponse = ", loginResponse)
const session = loginResponse.headers.get("Set-Cookie");
// Set cookie securely on the server
cookies.set('session', loginResponse.token, {
httpOnly: true, // Prevents JavaScript access
secure: process.env.NODE_ENV === 'production', // Only send over HTTPS in production
sameSite: 'Strict', // Ensures the cookie is only sent in a first-party context
maxAge: 3600 // Expiry time in seconds (e.g., 1 hour)
});
console.log("in POST5")
return json({ id: loginResponse.id, name: loginResponse.name }); // Return necessary data
return json({ id: loginResponse.id, name: loginResponse.name });
} catch (error) {
return json({ error: error.message }, { status: 401 });
}