Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[docs] Reflect new structure of cookie config object since RW 6.4 #11781

Merged
merged 11 commits into from
Dec 16, 2024
Merged

[docs] Reflect new structure of cookie config object since RW 6.4 #11781

Changes from 2 commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
c3812ca
Reflect new structure of cookie config object since RW 6.4
Philzen Dec 15, 2024
00c6b44
Reflect new structure of cookie config object since RW 6.4
Philzen Dec 15, 2024
978ad2b
Fix cookie.domain → cookie.attributes.domain
Philzen Dec 16, 2024
e8c0527
Update docs/docs/auth/dbauth.md
Tobbe Dec 16, 2024
fb1df2f
Merge branch 'main' into patch-31
Philzen Dec 16, 2024
7907bed
Reflect new structure of cookie config object since RW 6.4
Philzen Dec 16, 2024
a1090de
Fix syntax hightlighting of js object with is not valid JSON
Philzen Dec 16, 2024
985d0cc
Update versioned docs
Philzen Dec 16, 2024
957d655
Update function config section with new cookie config structure
Philzen Dec 16, 2024
78ff0d2
Apply suggestions from code review - attributes
Tobbe Dec 16, 2024
ef1835c
formatting
Tobbe Dec 16, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 19 additions & 10 deletions docs/docs/auth/dbauth.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -316,14 +316,19 @@ These options determine how the cookie that tracks whether the client is authori

```javascript
cookie: {
HttpOnly: true,
Path: '/',
SameSite: 'Strict',
Secure: true,
// Domain: 'example.com',
attributes: {
HttpOnly: true,
Path: '/',
SameSite: 'Strict',
Secure: true,
// Domain: 'example.com',
},
// name: 'session_%port%'
}
```

As shown above the cookie name defaults to `'session_%port%'` but can also be customized, where `%port% will be replaced with the port the api server is running on.
Tobbe marked this conversation as resolved.
Show resolved Hide resolved

### CORS config

If you're using dbAuth and your api and web sides are deployed to different domains then you'll need to configure CORS for both GraphQL in general and dbAuth. You'll also need to enable a couple of options to be sure and send/accept credentials in XHR requests. For more info, see the complete [CORS doc](cors.md#cors-and-authentication).
Expand Down Expand Up @@ -352,11 +357,15 @@ To do this, set the `cookie.Domain` property in your `api/src/functions/auth.js`

```json title="api/src/functions/auth.js"
cookie: {
HttpOnly: true,
Path: '/',
SameSite: 'Strict',
Secure: process.env.NODE_ENV !== 'development' ? true : false,
Domain: 'example.com'
attributes: {
HttpOnly: true,
Path: '/',
SameSite: 'Strict',
Secure: process.env.NODE_ENV !== 'development' ? true : false,
// highlight-next-line
Domain: 'example.com'
Philzen marked this conversation as resolved.
Show resolved Hide resolved
},
// name: 'session_%port%'
}
```

Expand Down
Loading