github-starred/better-auth
2
0
Fork 0
mirror of https://github.com/better-auth/better-auth.git synced 2026-06-02 04:16:38 -05:00
Code Issues 2.5k Packages Projects Releases 112 Wiki Activity

fix(passkey): use cookie config for passkey (#1125)

Browse Source
This commit is contained in:
Bereket Engida
2025-01-04 11:31:07 +03:00
committed by GitHub
parent 3714099c0c
commit 2206769262
1 changed files with 18 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
packages/better-auth/src/plugins/passkey/index.ts
View File

@@ -261,16 +261,16 @@ export const passkey = (options?: PasskeyOptions) => {
authenticatorAttachment: "platform",
},
});
const id = generateId(32);
await ctx.setSignedCookie(
const webAuthnCookie = ctx.context.createAuthCookie(
opts.advanced.webAuthnChallengeCookie,
);
await ctx.setSignedCookie(
webAuthnCookie.name,
id,
ctx.context.secret,
{
secure: true,
httpOnly: true,
sameSite: "lax",
...webAuthnCookie.attributes,
maxAge: maxAgeInSeconds,
},
);
@@ -428,14 +428,15 @@ export const passkey = (options?: PasskeyOptions) => {
},
};
const id = generateId(32);
await ctx.setSignedCookie(
const webAuthnCookie = ctx.context.createAuthCookie(
opts.advanced.webAuthnChallengeCookie,
);
await ctx.setSignedCookie(
webAuthnCookie.name,
id,
ctx.context.secret,
{
secure: true,
httpOnly: true,
sameSite: "lax",
...webAuthnCookie.attributes,
maxAge: maxAgeInSeconds,
},
);
@@ -493,8 +494,11 @@ export const passkey = (options?: PasskeyOptions) => {
});
}
const resp = ctx.body.response;
const challengeId = await ctx.getSignedCookie(
const webAuthnCookie = ctx.context.createAuthCookie(
opts.advanced.webAuthnChallengeCookie,
);
const challengeId = await ctx.getSignedCookie(
webAuthnCookie.name,
ctx.context.secret,
);
if (!challengeId) {
@@ -619,8 +623,11 @@ export const passkey = (options?: PasskeyOptions) => {
});
}
const resp = ctx.body.response;
const challengeId = await ctx.getSignedCookie(
const webAuthnCookie = ctx.context.createAuthCookie(
opts.advanced.webAuthnChallengeCookie,
);
const challengeId = await ctx.getSignedCookie(
webAuthnCookie.name,
ctx.context.secret,
);
if (!challengeId) {