fix: access token cookie의 httpOnly 옵션 false로 설정

tscenping · Nov 15, 2023 · 2bcc0cb · 2bcc0cb
1 parent 8e89828
commit 2bcc0cb
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/src/auth/auth.controller.ts b/src/auth/auth.controller.ts
@@ -51,17 +51,15 @@ export class AuthController {
 
 		// token을 쿠키에 저장한다.
 		res.cookie('accessToken', jwtAccessToken, {
-			// httpOnly: true,
+			// httpOnly: true,	// 자동로그인을 위해 httpOnly를 false로 설정
 			secure: true,
 			sameSite: 'none',
-			expires: new Date(Date.now() + 1000 * 60 * 60 * 24 * 7),
 		});
 
 		res.cookie('refreshToken', jwtRefreshToken, {
 			httpOnly: true,
 			secure: true,
 			sameSite: 'none',
-			expires: new Date(Date.now() + 1000 * 60 * 60 * 24 * 7),
 		});
 
 		const userSigninResponseDto: UserSigninResponseDto = {