fix: cookie setting by only setting on admin routes

2026-03-17 21:06:04 +00:00 · 2025-06-03 13:04:03 +02:00
parent 50cadbaa8e
commit 15a9c549e7
6 changed files with 270 additions and 59 deletions
--- a/app/src/auth/middlewares.ts
+++ b/app/src/auth/middlewares.ts
@@ -60,11 +60,7 @@ export const auth = (options?: {
      }

      await next();
-
-      if (!skipped) {
-         // renew cookie if applicable
-         authenticator?.requestCookieRefresh(c);
-      }
+      // @todo: potentially add cookie refresh if content-type html and about to expire

      // release
      authCtx.skip = false;