Merge pull request #2 from ls1intum/fix-token

ninori9 · web-flow · commit 2e20eefa6553 · 2025-01-29T12:32:11.000+01:00
Fix token
diff --git a/src/main/java/com/ase/angelos_kb_backend/controller/UserController.java b/src/main/java/com/ase/angelos_kb_backend/controller/UserController.java
@@ -118,7 +118,7 @@ public ResponseEntity<Map<String, String>> login(@RequestBody LoginRequestDTO lo
             .httpOnly(true)
             .secure(false) // TODO: Change this when deployed
             .sameSite("Lax") // For cross-site requests, None is required when sending cookies
-            .path("/api/users")
+            .path("/")
             .maxAge(7 * 24 * 60 * 60) // Refresh token expiry, say one week
             .build();
 
@@ -160,7 +160,7 @@ public ResponseEntity<Void> logout() {
             .httpOnly(true)
             .secure(true)
             .sameSite("Strict")
-            .path("/refresh")
+            .path("/")
             .maxAge(0) // Invalidate the cookie immediately
             .build();
 
