cookie-related typos

This commit is contained in:
Felix Albrigtsen 2022-04-23 13:39:24 +02:00
parent 8c6b5e8326
commit cf303eb6c9
1 changed files with 1 additions and 2 deletions

View File

@ -21,7 +21,7 @@ app.use(session({
secret: process.env.COOKIE_SECRET, secret: process.env.COOKIE_SECRET,
rolling: true, rolling: true,
cookie: { cookie: {
secure: (process.env.COOKIE_SECRET == "true"), // All env vars are strings, so cast bool manually secure: (process.env.COOKIE_SECURE == "true"), // All env vars are strings, so cast bool manually
sameSite: 'strict', // Browsers will reject a "secure" cookie without this sameSite: 'strict', // Browsers will reject a "secure" cookie without this
maxAge: 60 * 60 * 1000 // 1 hour (in milliseconds) maxAge: 60 * 60 * 1000 // 1 hour (in milliseconds)
} }
@ -120,7 +120,6 @@ app.get('/auth/google/callback',
}) })
.catch(err => { .catch(err => {
// User is not in the database at all, do not give them a session. // User is not in the database at all, do not give them a session.
res.session.user = null;
res.json({"status": "error", message: "Email is not in administrator list."}); res.json({"status": "error", message: "Email is not in administrator list."});
return; return;
}); });