Move sending refresh tokens out of JS.

2024-04-02 12:42:31 -04:00
parent 0a0b0c1adb
commit cc92748747
3 changed files with 43 additions and 91 deletions
--- a/core/app.js
+++ b/core/app.js
@ -88,7 +88,6 @@ function socket(request, response, client) {
 	let process;
 	let options = {};
 	let credentials = auth.query(request.headers);
-	let refresh = auth.makeRefresh(credentials);

 	response.onClose = async function () {
 		if (process && process.task) {
@ -241,14 +240,7 @@ function socket(request, response, client) {
 		}
 	};

-	response.upgrade(
-		100,
-		refresh
-			? {
-					'Set-Cookie': `session=${refresh.token}; path=/; Max-Age=${refresh.interval}; Secure; SameSite=Strict`,
-				}
-			: {}
-	);
+	response.upgrade(100, {});
 }

 export {socket, App};