whitelist device auth cors

This commit is contained in:
Evert Prants 2024-06-08 16:03:49 +03:00
parent 03c2e5c5db
commit 27fdcc1cac
Signed by: evert
GPG Key ID: 1688DA83D222D0B5

View File

@ -19,7 +19,7 @@ if (AUTO_MIGRATE === 'true') {
await runSeeds();
export const handle = sequence(
csrf(['/oauth2/token', '/oauth2/introspect']),
csrf(['/oauth2/token', '/oauth2/introspect', '/oauth2/device_authorization']),
handleSession({
secret: SESSION_SECRET,
cookie: {