Fix case where secureCookie is passed as false, and we need it to sta…

…y false (#704) in evaluation. Use the nullish coalescing operator here to avoid calling into getServerOrigin(), which does not apply to our use case. Co-authored-by: Marsel Shayhin <18054980+phoenix-ru@users.noreply.github.com>
sidebase · Mar 14, 2024 · 5d713aa · 5d713aa
1 parent 454f5a0
commit 5d713aa
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/runtime/server/services/authjs/nuxtAuthHandler.ts b/src/runtime/server/services/authjs/nuxtAuthHandler.ts
@@ -227,7 +227,7 @@ export const getToken = <R extends boolean = false>({ event, secureCookie, secre
     headers: getHeaders(event) as IncomingHttpHeaders
   },
   // see https://github.com/nextauthjs/next-auth/blob/8387c78e3fef13350d8a8c6102caeeb05c70a650/packages/next-auth/src/jwt/index.ts#L73
-  secureCookie: secureCookie || getServerOrigin(event).startsWith('https://'),
+  secureCookie: secureCookie ?? getServerOrigin(event).startsWith('https://'),
   secret: secret || usedSecret,
   ...rest
 })