feat: Enhance OAuth2 flow with temporary code exchange and update cookie handling

2025-07-26 18:31:40 +02:00
parent 98e36b067d
commit 0f605d7ed1
6 changed files with 127 additions and 24 deletions
--- a/.env.template
+++ b/.env.template
@@ -20,10 +20,10 @@ JWT_REFRESH_TOKEN_EXPIRE_DAYS=7

 # Cookie Configuration
 COOKIE_SECURE=false
+COOKIE_SAMESITE=lax

 # OAuth2 Configuration
 GOOGLE_CLIENT_ID=
 GOOGLE_CLIENT_SECRET=
 GITHUB_CLIENT_ID=
 GITHUB_CLIENT_SECRET=
-OAUTH_REDIRECT_URL=http://localhost:8001/auth/callback