chore: make cookie secure flag conditional for development and add pnpm store to gitignore

2026-02-07 15:11:16 +01:00
parent a594affdfa
commit ac3c405cb2
5 changed files with 13 additions and 2 deletions
--- a/packages/eslint-config/package.json
+++ b/packages/eslint-config/package.json
@@ -20,6 +20,7 @@
  "dependencies": {
    "@eslint/eslintrc": "^3.0.0",
    "@eslint/js": "^9.39.2",
+    "@next/eslint-plugin-next": "15.1.6",
    "eslint-config-next": "15.1.6",
    "typescript-eslint": "^8.54.0"
  }
--- a/packages/gatekeeper/src/app/login/page.tsx
+++ b/packages/gatekeeper/src/app/login/page.tsx
@@ -79,9 +79,11 @@ export default async function LoginPage({ searchParams }: LoginPageProps) {
        timestamp: Date.now(),
      });

+      const isDev = process.env.NODE_ENV === "development";
+
      cookieStore.set(authCookieName, sessionValue, {
        httpOnly: true,
-        secure: true,
+        secure: !isDev,
        path: "/",
        maxAge: 30 * 24 * 60 * 60, // 30 days
        sameSite: "lax",