Update refresh token path

ECN · Feb 3, 2021 · db580ee · db580ee
1 parent c02fae3
commit db580ee
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/api/api.py b/api/api.py
@@ -38,7 +38,7 @@
 # Restrict cookies using SameSite=strict flag
 app.config["JWT_COOKIE_SAMESITE"] = "strict"
 # Restrict refresh tokens to /token/refresh endpoint
-app.config["JWT_REFRESH_COOKIE_PATH"] = '/tokens/refresh'
+app.config["JWT_REFRESH_COOKIE_PATH"] = '/api/tokens/refresh'
 # Set the cookie key for CRSF validation string
 # This is the default value. Adding it for easy reference
 app.config["JWT_REFRESH_CSRF_HEADER_NAME"] = "X-CSRF-TOKEN"