From c4a30684924fee0aa24b4814c49929a5f3c7ec5e Mon Sep 17 00:00:00 2001
From: Michael Genson <71845777+michael-genson@users.noreply.github.com>
Date: Thu, 20 Nov 2025 15:18:27 -0600
Subject: [PATCH] fix: Set maxAge on frontend auth cookie (#6576)

---
 frontend/composables/useAuthBackend.ts | 7 +++++--
 frontend/nuxt.config.ts                | 1 +
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/frontend/composables/useAuthBackend.ts b/frontend/composables/useAuthBackend.ts
index 9eec3b29a..2a796b835 100644
--- a/frontend/composables/useAuthBackend.ts
+++ b/frontend/composables/useAuthBackend.ts
@@ -25,8 +25,11 @@ const authStatus = ref<"loading" | "authenticated" | "unauthenticated">("loading
 export const useAuthBackend = function (): AuthState {
   const { $axios } = useNuxtApp();
   const router = useRouter();
-  const tokenName = useRuntimeConfig().public.AUTH_TOKEN;
-  const tokenCookie = useCookie(tokenName);
+
+  const runtimeConfig = useRuntimeConfig();
+  const tokenTimeHours = Number(runtimeConfig.public.TOKEN_TIME) || 48;
+  const tokenName = runtimeConfig.public.AUTH_TOKEN;
+  const tokenCookie = useCookie(tokenName, { maxAge: tokenTimeHours * 60 * 60 });
 
   function setToken(token: string | null) {
     tokenCookie.value = token;
diff --git a/frontend/nuxt.config.ts b/frontend/nuxt.config.ts
index 9f34384ba..4f8e3be76 100644
--- a/frontend/nuxt.config.ts
+++ b/frontend/nuxt.config.ts
@@ -72,6 +72,7 @@ export default defineNuxtConfig({
     apiUrl: process.env.API_URL || "http://localhost:9000",
     public: {
       AUTH_TOKEN,
+      TOKEN_TIME: process.env.TOKEN_TIME || "48",
       GLOBAL_MIDDLEWARE: process.env.GLOBAL_MIDDLEWARE || undefined,
       SUB_PATH: process.env.SUB_PATH || "",
       // ==============================================