ad TIMEZONE and more

2026-02-09 12:31:06 +01:00
parent efa7533179
commit a94ec11c80
5 changed files with 60 additions and 76 deletions
--- a/app/routes/auth.py
+++ b/app/routes/auth.py
@@ -104,7 +104,8 @@ def login(request: Request, data: LoginRequest, response: Response, db: Session
        value=token,
        httponly=True,
        max_age=config.ACCESS_TOKEN_EXPIRE_MINUTES * 60,
-        samesite="lax"
+        samesite="lax",
+        secure=config.COOKIE_SECURE
    )

    config.logger.info(f"User logged in: {data.email}")
@@ -114,7 +115,12 @@ def login(request: Request, data: LoginRequest, response: Response, db: Session
@router.post("/logout")
 def logout(response: Response):
    """Logout and clear session"""
-    response.delete_cookie("session_token")
+    response.delete_cookie(
+        key="session_token",
+        httponly=True,
+        samesite="lax",
+        secure=config.COOKIE_SECURE
+    )
    return {"message": "Logged out"}