cookie를 읽을 때, https:// 이면 secure cookie를 읽도록 변경

This commit is contained in:
2026-06-11 14:28:03 +09:00
parent 39c5ddb55c
commit 0a7361402d
+7
View File
@@ -3,12 +3,19 @@ import { NextResponse, type NextRequest } from "next/server";
const PUBLIC_PATHS = ["/login"];
function usesSecureAuthCookies() {
const authUrl = process.env.AUTH_URL ?? process.env.NEXTAUTH_URL;
return authUrl?.startsWith("https://") ?? false;
}
export async function proxy(request: NextRequest) {
const { pathname, search } = request.nextUrl;
const isPublicPath = PUBLIC_PATHS.includes(pathname);
const token = await getToken({
req: request,
secret: process.env.AUTH_SECRET ?? process.env.NEXTAUTH_SECRET,
secureCookie: usesSecureAuthCookies(),
});
if (!token && !isPublicPath) {