asyavee/medusa-store
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

fix(medusa): secure cookies in staging

Browse Source
This commit is contained in:
Sebastian Rindom
2020-09-07 10:48:19 +02:00
parent 2735e8c7e8
commit 7e2446f52e
1 changed files with 9 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
packages/medusa/src/loaders/express.js
View File

@@ -8,6 +8,13 @@ import createStore from "connect-redis"
import config from "../config"
export default async ({ app, configModule }) => {
let sameSite = false
let secure = false
if (process.env.NODE_ENV === "production" || process.env.NODE_ENV === "staging") {
secure = true
sameSite = "none"
}
const RedisStore = createStore(session)
const redisClient = redis.createClient(configModule.projectConfig.redis_url)
@@ -27,8 +34,8 @@ export default async ({ app, configModule }) => {
proxy: true,
secret: config.cookieSecret,
cookie: {
sameSite: process.env.NODE_ENV === "production" ? "none" : false,
secure: process.env.NODE_ENV === "production",
sameSite,
secure,
maxAge: 10 * 60 * 60 * 1000,
},
})