fix: secure cookies fix for callback URL (#6358)

2025-12-30 18:30:32 -06:00 · 2025-08-05 23:14:13 +05:30
parent 355782f404
commit 7400ce2e67
1 changed files with 5 additions and 1 deletions
--- a/apps/web/modules/auth/lib/authOptions.ts
+++ b/apps/web/modules/auth/lib/authOptions.ts
@@ -319,7 +319,11 @@ export const authOptions: NextAuthOptions = {
    async signIn({ user, account }: { user: TUser; account: Account }) {
      const cookieStore = await cookies();

-      const callbackUrl = cookieStore.get("next-auth.callback-url")?.value || "";
+      // get callback url from the cookie store,
+      const callbackUrl =
+        cookieStore.get("__Secure-next-auth.callback-url")?.value ||
+        cookieStore.get("next-auth.callback-url")?.value ||
+        "";

      if (account?.provider === "credentials" || account?.provider === "token") {
        // check if user's email is verified or not