chore(release): 0.11.4 [skip ci]

## [0.11.4](https://github.com/sasjs/server/compare/v0.11.3...v0.11.4) (2022-07-19) ### Bug Fixes * **security:** missing cookie flags are added ([526402f](526402fd73))
Merge pull request #234 from sasjs/issue147
2025-12-10 19:34:34 +00:00 · 2022-07-19 21:06:05 +00:00 · 2022-07-19 22:02:05 +01:00 · 2022-07-20 01:40:31 +05:00
2 changed files with 9 additions and 1 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,10 @@
+## [0.11.4](https://github.com/sasjs/server/compare/v0.11.3...v0.11.4) (2022-07-19)
+
+
+### Bug Fixes
+
+* **security:** missing cookie flags are added ([526402f](https://github.com/sasjs/server/commit/526402fd73407ee4fa2d31092111a7e6a1741487))
+
 ## [0.11.3](https://github.com/sasjs/server/compare/v0.11.2...v0.11.3) (2022-07-19)


--- a/api/src/routes/web/web.ts
+++ b/api/src/routes/web/web.ts
@@ -1,4 +1,5 @@
 import express from 'express'
+import { cookieOptions } from '../../app'
 import { WebController } from '../../controllers/web'
 import { authenticateAccessToken, desktopRestrict } from '../../middlewares'
 import { authorizeValidation, loginWebValidation } from '../../utils'
@@ -13,7 +14,7 @@ webRouter.get('/', async (req, res) => {
  } catch (_) {
    response = 'Web Build is not present'
  } finally {
-    res.cookie('XSRF-TOKEN', req.csrfToken())
+    res.cookie('XSRF-TOKEN', req.csrfToken(), cookieOptions)

    return res.send(response)
  }
Author	SHA1	Message	Date
semantic-release-bot	8b62755f39	chore(release): 0.11.4 [skip ci] ## [0.11.4](https://github.com/sasjs/server/compare/v0.11.3...v0.11.4) (2022-07-19) ### Bug Fixes * security: missing cookie flags are added ([`526402f`](`526402fd73`))	2022-07-19 21:06:05 +00:00
Allan Bowe	cb84c3ebbb	Merge pull request #234 from sasjs/issue147 fix(security): missing cookie flags are added	2022-07-19 22:02:05 +01:00
Saad Jutt	526402fd73	fix(security): missing cookie flags are added	2022-07-20 01:40:31 +05:00