add HTTP_ALLOWED env var, fixes Impossible to login without HTTPS #9

2025-11-03 13:33:25 +00:00 · 2024-05-28 19:53:15 +02:00
parent c552748793
commit a98db90c14
1 changed files with 5 additions and 3 deletions
--- a/src/index.tsx
+++ b/src/index.tsx
@@ -27,6 +27,8 @@ const outputDir = "./data/output/";
 const ACCOUNT_REGISTRATION =
  process.env.ACCOUNT_REGISTRATION === "true" || false;

+const HTTP_ALLOWED = process.env.HTTP_ALLOWED === "true" || false;
+
 // fileNames: fileNames,
 // filesToConvert: fileNames.length,
 // convertedFiles : 0,
@@ -244,7 +246,7 @@ const app = new Elysia()
      auth.set({
        value: accessToken,
        httpOnly: true,
-        secure: true,
+        secure: !HTTP_ALLOWED,
        maxAge: 60 * 60 * 24 * 7,
        sameSite: "strict",
      });
@@ -350,7 +352,7 @@ const app = new Elysia()
      auth.set({
        value: accessToken,
        httpOnly: true,
-        secure: true,
+        secure: !HTTP_ALLOWED,
        maxAge: 60 * 60 * 24 * 7,
        sameSite: "strict",
      });
@@ -418,7 +420,7 @@ const app = new Elysia()
    jobId.set({
      value: id,
      httpOnly: true,
-      secure: true,
+      secure: !HTTP_ALLOWED,
      maxAge: 24 * 60 * 60,
      sameSite: "strict",
    });