From 0a7361402dcae1fabb9768c747dacb2157022ead Mon Sep 17 00:00:00 2001 From: jisangs Date: Thu, 11 Jun 2026 14:28:03 +0900 Subject: [PATCH] =?UTF-8?q?cookie=EB=A5=BC=20=EC=9D=BD=EC=9D=84=20?= =?UTF-8?q?=EB=95=8C,=20https://=20=EC=9D=B4=EB=A9=B4=20secure=20cookie?= =?UTF-8?q?=EB=A5=BC=20=EC=9D=BD=EB=8F=84=EB=A1=9D=20=EB=B3=80=EA=B2=BD?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- proxy.ts | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/proxy.ts b/proxy.ts index afd76d4..19864fa 100644 --- a/proxy.ts +++ b/proxy.ts @@ -3,12 +3,19 @@ import { NextResponse, type NextRequest } from "next/server"; const PUBLIC_PATHS = ["/login"]; +function usesSecureAuthCookies() { + const authUrl = process.env.AUTH_URL ?? process.env.NEXTAUTH_URL; + + return authUrl?.startsWith("https://") ?? false; +} + export async function proxy(request: NextRequest) { const { pathname, search } = request.nextUrl; const isPublicPath = PUBLIC_PATHS.includes(pathname); const token = await getToken({ req: request, secret: process.env.AUTH_SECRET ?? process.env.NEXTAUTH_SECRET, + secureCookie: usesSecureAuthCookies(), }); if (!token && !isPublicPath) {