fix: updated cookies to use SameSite=Lax

Azurency · Azurency · commit 915eef66741d · 2023-11-14T17:57:02.000+01:00
diff --git a/src/runtime/server/utils/security.ts b/src/runtime/server/utils/security.ts
@@ -70,11 +70,11 @@ export const checks = {
       console.log('pkceChallenge', pkceChallenge)
       res['code_challenge'] = pkceChallenge
       res['code_challenge_method'] = 'S256'
-      setCookie(event, 'nuxt-auth-util-verifier', pkceVerifier, { maxAge: 60 * 15, secure: true, httpOnly: true })
+      setCookie(event, 'nuxt-auth-util-verifier', pkceVerifier, { maxAge: 60 * 15, secure: true, httpOnly: true, sameSite: 'lax' })
     }
     if (checks?.includes('state')) {
       res['state'] = generateState()
-      setCookie(event, 'nuxt-auth-util-state', res['state'], { maxAge: 60 * 15, secure: true, httpOnly: true })
+      setCookie(event, 'nuxt-auth-util-state', res['state'], { maxAge: 60 * 15, secure: true, httpOnly: true, sameSite: 'lax' })
     }
     return res
   },

Original file line number	Diff line number	Diff line change
`@@ -70,11 +70,11 @@ export const checks = {`
`70`	`70`	`console.log('pkceChallenge', pkceChallenge)`
`71`	`71`	`res['code_challenge'] = pkceChallenge`
`72`	`72`	`res['code_challenge_method'] = 'S256'`
`73`		`- setCookie(event, 'nuxt-auth-util-verifier', pkceVerifier, { maxAge: 60 * 15, secure: true, httpOnly: true })`
	`73`	`+ setCookie(event, 'nuxt-auth-util-verifier', pkceVerifier, { maxAge: 60 * 15, secure: true, httpOnly: true, sameSite: 'lax' })`
`74`	`74`	`}`
`75`	`75`	`if (checks?.includes('state')) {`
`76`	`76`	`res['state'] = generateState()`
`77`		`- setCookie(event, 'nuxt-auth-util-state', res['state'], { maxAge: 60 * 15, secure: true, httpOnly: true })`
	`77`	`+ setCookie(event, 'nuxt-auth-util-state', res['state'], { maxAge: 60 * 15, secure: true, httpOnly: true, sameSite: 'lax' })`
`78`	`78`	`}`
`79`	`79`	`return res`
`80`	`80`	`},`