Make auth cookie key more unique to avoid collisions with other apps running on the same server.

2024-12-01 04:33:02 +03:00 · 2022-09-08 07:33:46 -07:00 · 2022-09-08 07:33:46 -07:00 · a9adddc0ce
commit a9adddc0ce
parent 8d300d42a4
2 changed files with 3 additions and 3 deletions
--- a/src/utils/Auth.js
+++ b/src/utils/Auth.js
@ -125,7 +125,7 @@ export const login = (username, pass, timeout) => {
  const now = new Date();
  const expiry = new Date(now.setTime(now.getTime() + timeout)).toGMTString();
  const userObject = { user: username, hash: sha256(pass).toString().toLowerCase() };
-  document.cookie = `authenticationToken=${generateUserToken(userObject)};`
+  document.cookie = `${cookieKeys.AUTH_TOKEN}=${generateUserToken(userObject)};`
    + `${timeout > 0 ? `expires=${expiry}` : ''}`;
  localStorage.setItem(localStorageKeys.USERNAME, username);
 };
@ -134,7 +134,7 @@ export const login = (username, pass, timeout) => {
 * Removed the browsers' cookie, causing user to be logged out
 */
 export const logout = () => {
-  document.cookie = 'authenticationToken=null';
+  document.cookie = `${cookieKeys.AUTH_TOKEN}=null`;
  localStorage.removeItem(localStorageKeys.USERNAME);
 };
--- a/src/utils/defaults.js
+++ b/src/utils/defaults.js
@ -136,7 +136,7 @@ module.exports = {
  },
  /* Key names for cookie identifiers */
  cookieKeys: {
-    AUTH_TOKEN: 'authenticationToken',
+    AUTH_TOKEN: 'dashyAuthToken',
  },
  /* Key names for session storage identifiers */
  sessionStorageKeys: {