yogiedigital/cod-api
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: cookie dev

Browse Source
This commit is contained in:
Antony Kurniawan
2025-10-02 15:39:26 +07:00
parent f4580c42ee
commit 1987508887
1 changed files with 9 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
controllers/auth.controller.js
View File

@@ -29,8 +29,8 @@ class AuthController {
// Set refresh token in cookie // Set refresh token in cookie
res.cookie('refreshToken', tokens.refreshToken, { res.cookie('refreshToken', tokens.refreshToken, {
httpOnly: true, httpOnly: true,
secure: process.env.NODE_ENV === 'production', secure: false, //masih dev
sameSite: 'strict', sameSite: 'lax',
maxAge: 7 * 24 * 60 * 60 * 1000 // 7 hari maxAge: 7 * 24 * 60 * 60 * 1000 // 7 hari
}); });
@@ -71,8 +71,8 @@ class AuthController {
// Set refresh token in cookie // Set refresh token in cookie
res.cookie('refreshToken', tokens.refreshToken, { res.cookie('refreshToken', tokens.refreshToken, {
httpOnly: true, httpOnly: true,
secure: process.env.NODE_ENV === 'production', secure: false, // masih dev
sameSite: 'strict', sameSite: 'lax',
maxAge: 7 * 24 * 60 * 60 * 1000 // 7 hari maxAge: 7 * 24 * 60 * 60 * 1000 // 7 hari
}); });
@@ -98,8 +98,9 @@ class AuthController {
return res.status(200).json(setResponse(result, 'Token refreshed successfully', 200)); return res.status(200).json(setResponse(result, 'Token refreshed successfully', 200));
} catch (err) { } catch (err) {
return res.status(err.statusCode || 500).json( const status = err.statusCode && err.statusCode < 500 ? err.statusCode : 401;
setResponse(null, err.message || 'Refresh token failed', err.statusCode || 500) return res.status(status).json(
setResponse(null, err.message || 'Refresh token invalid', status)
); );
} }
} }
@@ -109,8 +110,8 @@ class AuthController {
try { try {
res.clearCookie('refreshToken', { res.clearCookie('refreshToken', {
httpOnly: true, httpOnly: true,
secure: process.env.NODE_ENV === 'production', sameSite: 'none',
sameSite: 'strict', secure: true
}); });
return res.status(200).json(setResponse(null, 'Logged out successfully', 200)); return res.status(200).json(setResponse(null, 'Logged out successfully', 200));
} catch (err) { } catch (err) {