fix: broken session cookie domain

DTS-STN · Dec 11, 2024 · a85393a · a85393a
1 parent 22ca9b9
commit a85393a
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/future-sir-frontend/.env.example b/future-sir-frontend/.env.example
@@ -47,7 +47,7 @@ SESSION_EXPIRES_SECONDS=
 # This cookie stores session ID in the browser.
 SESSION_COOKIE_NAME=
 
-# The domain for which the session cookie is valid (default: localhost).
+# The domain for which the session cookie is valid (default: undefined).
 # Examples:
 #   - `localhost`: cookie is valid only for the localhost domain
 #   - `.example.com`: cookie is valid for all subdomains of example.com

diff --git a/future-sir-frontend/app/.server/express/environment.ts b/future-sir-frontend/app/.server/express/environment.ts
@@ -63,7 +63,7 @@ const serverEnvironmentSchema = clientEnvironmentSchema
 
     // session config
     SESSION_TYPE: z.enum(['memory', 'redis']).default('memory'),
-    SESSION_COOKIE_DOMAIN: z.string().default('localhost'),
+    SESSION_COOKIE_DOMAIN: z.string().optional(),
     SESSION_COOKIE_NAME: z.string().default('__FSIR||session'),
     SESSION_COOKIE_PATH: z.string().default('/'),
     SESSION_COOKIE_SAMESITE: z.enum(['lax', 'strict', 'none']).default('strict'),