whitelist device auth cors

This commit is contained in:
Evert Prants 2024-06-08 16:03:49 +03:00
parent 03c2e5c5db
commit 27fdcc1cac
Signed by: evert
GPG Key ID: 1688DA83D222D0B5

View File

@ -19,7 +19,7 @@ if (AUTO_MIGRATE === 'true') {
await runSeeds(); await runSeeds();
export const handle = sequence( export const handle = sequence(
csrf(['/oauth2/token', '/oauth2/introspect']), csrf(['/oauth2/token', '/oauth2/introspect', '/oauth2/device_authorization']),
handleSession({ handleSession({
secret: SESSION_SECRET, secret: SESSION_SECRET,
cookie: { cookie: {