Refresh Token 쿠키의 유효 기간 설정

2025-12-16 06:58:46 +00:00 · 2024-12-26 19:23:39 +09:00
parent bd1cc9ea38
commit da4b753c41
4 changed files with 16 additions and 2 deletions
--- a/src/routes/api/auth/login/+server.ts
+++ b/src/routes/api/auth/login/+server.ts
@@ -1,5 +1,7 @@
 import { error, json } from "@sveltejs/kit";
+import ms from "ms";
 import { z } from "zod";
+import env from "$lib/server/loadenv";
 import { login } from "$lib/server/services/auth";
 import type { RequestHandler } from "./$types";

@@ -18,6 +20,7 @@ export const POST: RequestHandler = async ({ request, cookies }) => {

  cookies.set("refreshToken", refreshToken, {
    path: "/api/auth",
+    maxAge: Math.floor(ms(env.jwt.refreshExp) / 1000),
    httpOnly: true,
    secure: true,
    sameSite: "strict",