From af74a1575b8a26bd733231045e0f0800133cb7d5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9s=20Moya?= <andres.moya@kaleidos.net>
Date: Fri, 11 Feb 2022 09:55:27 +0100
Subject: [PATCH] :bug: Clear authentication cookies when logged out

---
 backend/src/app/http/session.clj | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/backend/src/app/http/session.clj b/backend/src/app/http/session.clj
index 94e37219b..03bfd4a44 100644
--- a/backend/src/app/http/session.clj
+++ b/backend/src/app/http/session.clj
@@ -119,8 +119,14 @@
 
 (defn- clear-cookies
   [response]
-  (assoc response :cookies {token-cookie-name {:value "" :max-age -1}
-                            authenticated-cookie-name {:value "" :max-age -1}}))
+  (let [authenticated-cookie-domain (cfg/get :authenticated-cookie-domain)]
+    (assoc response :cookies {token-cookie-name {:path "/"
+                                                 :value ""
+                                                 :max-age -1}
+                              authenticated-cookie-name {:domain authenticated-cookie-domain
+                                                         :path "/"
+                                                         :value ""
+                                                         :max-age -1}})))
 
 (defn- middleware
   [events-ch store handler]