allows for multiple httpOnly cookie domains

src/auth/operations/login.js

@@ -74,7 +74,16 @@ const login = async (args) => {
       cookieOptions.secure = true;
     }
 
-    args.res.cookie(`${config.cookiePrefix}-token`, token, cookieOptions);
+    if (Array.isArray(collectionConfig.auth.cookieDomains)) {
+      collectionConfig.auth.cookieDomains.forEach((domain) => {
+        args.res.cookie(`${config.cookiePrefix}-token`, token, {
+          ...cookieOptions,
+          domain,
+        });
+      });
+    } else {
+      args.res.cookie(`${config.cookiePrefix}-token`, token, cookieOptions);
+    }
   }
 
   // /////////////////////////////////////

src/auth/operations/logout.js

@@ -18,7 +18,16 @@ const logout = async (args) => {
     cookieOptions.secure = true;
   }
 
-  res.cookie(`${config.cookiePrefix}-token`, '', cookieOptions);
+  if (Array.isArray(collectionConfig.auth.cookieDomains)) {
+    collectionConfig.auth.cookieDomains.forEach((domain) => {
+      args.res.cookie(`${config.cookiePrefix}-token`, '', {
+        ...cookieOptions,
+        domain,
+      });
+    });
+  } else {
+    args.res.cookie(`${config.cookiePrefix}-token`, '', cookieOptions);
+  }
 
   return 'Logged out successfully.';
 };

src/auth/operations/refresh.js

@@ -41,7 +41,16 @@ const refresh = async (args) => {
       cookieOptions.secure = true;
     }
 
-    args.res.cookie(`${cookiePrefix}-token`, refreshedToken, cookieOptions);
+    if (Array.isArray(options.collection.config.auth.cookieDomains)) {
+      options.collection.config.auth.cookieDomains.forEach((domain) => {
+        args.res.cookie(`${cookiePrefix}-token`, refreshedToken, {
+          ...cookieOptions,
+          domain,
+        });
+      });
+    } else {
+      args.res.cookie(`${cookiePrefix}-token`, refreshedToken, cookieOptions);
+    }
   }