Refactor openid cookie options

2020-12-29 15:23:16 +01:00
parent b606abcfa2
commit 2dbeb03aed
1 changed files with 6 additions and 9 deletions
--- a/peertube-plugin-auth-openid-connect/main.js
+++ b/peertube-plugin-auth-openid-connect/main.js
@ -189,21 +189,18 @@ async function loadSettingsAndCreateClient (registerExternalAuth, unregisterExte
          state,
        })

-        const encryptedCodeVerifier = await encrypt(codeVerifier)
-        res.cookie(cookieNamePrefix + 'code-verifier', encryptedCodeVerifier, {
+        const cookieOptions = {
          secure: webserverUrl.startsWith('https://'),
          httpOnly: true,
          sameSite: 'none',
          maxAge: 1000 * 60 * 10 // 10 minutes
-        })
+        }
+
+        const encryptedCodeVerifier = await encrypt(codeVerifier)
+        res.cookie(cookieNamePrefix + 'code-verifier', encryptedCodeVerifier, cookieOptions)

        const encryptedState = await encrypt(state)
-        res.cookie(cookieNamePrefix + 'state', encryptedState, {
-          secure: webserverUrl.startsWith('https://'),
-          httpOnly: true,
-          sameSite: 'none',
-          maxAge: 1000 * 60 * 10 // 10 minutes
-        })
+        res.cookie(cookieNamePrefix + 'state', encryptedState, cookieOptions)

        return res.redirect(redirectUrl)
      } catch (err) {