mirror/seerr
1
0
Fork 0
mirror of https://github.com/seerr-team/seerr.git synced 2026-05-23 16:28:49 -04:00
Code Issues Packages Projects Releases Wiki Activity

fix: explicitly set sameSite: strict for OIDC correlation cookies

Browse Source
This commit is contained in:
Michael Thomas
2026-03-27 13:10:55 -04:00
parent 136157cdf9
commit 2667ec98fa
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
server/routes/auth.ts
View File

@@ -708,6 +708,7 @@ authRoutes.get('/oidc/login/:slug', async (req, res, next) => {
httpOnly: true,
secure: req.protocol === 'https',
signed: true,
sameSite: 'strict',
});
const callbackUrl = getOidcRedirectUrl(req);
@@ -726,6 +727,7 @@ authRoutes.get('/oidc/login/:slug', async (req, res, next) => {
httpOnly: true,
secure: req.protocol === 'https',
signed: true,
sameSite: 'strict',
});
let redirectUrl: URL;