refactor(multi-session): remove cookie filter

2026-05-27 17:36:42 -05:00 · 2024-10-18 21:57:49 +03:00
parent 3e4edd9aa7
commit 9a186cc64d
1 changed files with 3 additions and 5 deletions
--- a/packages/better-auth/src/plugins/multi-session/index.ts
+++ b/packages/better-auth/src/plugins/multi-session/index.ts
@@ -197,12 +197,10 @@ export const multiSession = (options?: MultiSessionConfig) => {
 						if (setCookies.get(cookieName) || cookies.get(cookieName)) return;

 						const currentMultiSessions =
-							Object.keys(cookies).filter(isMultiSessionCookie).length;
-						const toBeAdded = Object.keys(setCookies).filter((key) =>
-							key.includes("session_token"),
-						).length;
+							Object.keys(cookies).filter(isMultiSessionCookie).length +
+							(cookieString.includes("session_token") ? 1 : 0);

-						if (currentMultiSessions + toBeAdded > opts.maximumSessions) {
+						if (currentMultiSessions > opts.maximumSessions) {
 							throw new APIError("UNAUTHORIZED", {
 								message: "Maximum number of device sessions reached.",
 							});