Make auth cookie key more unique to avoid collisions with other apps …

…running on the same server.
Lissy93 · Sep 8, 2022 · a9adddc · a9adddc
1 parent 8d300d4
commit a9adddc
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/src/utils/Auth.js b/src/utils/Auth.js
@@ -125,7 +125,7 @@ export const login = (username, pass, timeout) => {
   const now = new Date();
   const expiry = new Date(now.setTime(now.getTime() + timeout)).toGMTString();
   const userObject = { user: username, hash: sha256(pass).toString().toLowerCase() };
-  document.cookie = `authenticationToken=${generateUserToken(userObject)};`
+  document.cookie = `${cookieKeys.AUTH_TOKEN}=${generateUserToken(userObject)};`
     + `${timeout > 0 ? `expires=${expiry}` : ''}`;
   localStorage.setItem(localStorageKeys.USERNAME, username);
 };
@@ -134,7 +134,7 @@ export const login = (username, pass, timeout) => {
  * Removed the browsers' cookie, causing user to be logged out
  */
 export const logout = () => {
-  document.cookie = 'authenticationToken=null';
+  document.cookie = `${cookieKeys.AUTH_TOKEN}=null`;
   localStorage.removeItem(localStorageKeys.USERNAME);
 };
 

diff --git a/src/utils/defaults.js b/src/utils/defaults.js
@@ -136,7 +136,7 @@ module.exports = {
   },
   /* Key names for cookie identifiers */
   cookieKeys: {
-    AUTH_TOKEN: 'authenticationToken',
+    AUTH_TOKEN: 'dashyAuthToken',
   },
   /* Key names for session storage identifiers */
   sessionStorageKeys: {