Removed secure flag and added expiry basd on ht refresh token

ref#25
2020-12-12 19:13:18 +01:00 · 2020-12-12 19:13:18 +01:00 · 615b54ec4f
parent c07d40ae93
commit 615b54ec4f
1 changed files with 2 additions and 2 deletions
--- a/src/controllers/AuthController.ts
+++ b/src/controllers/AuthController.ts
@ -25,8 +25,8 @@ export class AuthController {
 		let auth;
 		try {
 			auth = await createAuth.toAuth();
-			response.cookie('lfk_backend__refresh_token', auth.refresh_token, { maxAge: 900000, httpOnly: true, secure: true });
-			response.cookie('lfk_backend__refresh_token_expires_at', auth.refresh_token_expires_at, { maxAge: 900000, httpOnly: true, secure: true });
+			response.cookie('lfk_backend__refresh_token', auth.refresh_token, { expires: new Date(auth.refresh_token_expires_at * 1000), httpOnly: true });
+			response.cookie('lfk_backend__refresh_token_expires_at', auth.refresh_token_expires_at, { expires: new Date(auth.refresh_token_expires_at * 1000), httpOnly: true });
 			return response.send(auth)
 		} catch (error) {
 			throw error;