Infrastructure/zipline
1
Fork 0
Code Issues Pull requests Activity

fix(api): change cookie max-age from 10m seconds to 1 week

Browse source
This commit is contained in:
diced 2021-09-06 15:32:39 -07:00
parent a06d5ffaed
commit ee48456291
No known key found for this signature in database
GPG key ID: 85AB64C74535D76E
1 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/pages/api/auth/login.ts
View file

@ -2,8 +2,6 @@ import prisma from 'lib/prisma';
import { NextApiReq, NextApiRes, withZipline } from 'middleware/withZipline';
import { checkPassword, createToken, hashPassword } from 'lib/util';
import Logger from 'lib/logger';
import prismaRun from '../../../../scripts/prisma-run';
import config from 'lib/config';
async function handler(req: NextApiReq, res: NextApiRes) {
if (req.method !== 'POST') return res.status(405).end();
@ -34,7 +32,8 @@ async function handler(req: NextApiReq, res: NextApiRes) {
const valid = await checkPassword(password, user.password);
if (!valid) return res.forbid('Wrong password');
res.setCookie('user', user.id, { sameSite: true, maxAge: 10000000, path: '/' });
// 604800 seconds is 1 week
res.setCookie('user', user.id, { sameSite: true, maxAge: 604800, path: '/' });
Logger.get('user').info(`User ${user.username} (${user.id}) logged in`);