From 9a186cc64de2bee3fedbd9972dc5c388368f4952 Mon Sep 17 00:00:00 2001
From: Bereket Engida <bekacru@gmail.com>
Date: Fri, 18 Oct 2024 21:57:49 +0300
Subject: [PATCH] refactor(multi-session): remove cookie filter

---
 packages/better-auth/src/plugins/multi-session/index.ts | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/packages/better-auth/src/plugins/multi-session/index.ts b/packages/better-auth/src/plugins/multi-session/index.ts
index 44d596c942..f94e41834a 100644
--- a/packages/better-auth/src/plugins/multi-session/index.ts
+++ b/packages/better-auth/src/plugins/multi-session/index.ts
@@ -197,12 +197,10 @@ export const multiSession = (options?: MultiSessionConfig) => {
 						if (setCookies.get(cookieName) || cookies.get(cookieName)) return;
 
 						const currentMultiSessions =
-							Object.keys(cookies).filter(isMultiSessionCookie).length;
-						const toBeAdded = Object.keys(setCookies).filter((key) =>
-							key.includes("session_token"),
-						).length;
+							Object.keys(cookies).filter(isMultiSessionCookie).length +
+							(cookieString.includes("session_token") ? 1 : 0);
 
-						if (currentMultiSessions + toBeAdded > opts.maximumSessions) {
+						if (currentMultiSessions > opts.maximumSessions) {
 							throw new APIError("UNAUTHORIZED", {
 								message: "Maximum number of device sessions reached.",
 							});