remove afety: avoid setting cookie on known public suffix-like domains

2026-04-23 12:35:51 +00:00 · 2026-04-19 13:32:17 +01:00
parent 26cfe4eb5b
commit ae61c8f661
1 changed files with 9 additions and 9 deletions
@@ -26,16 +26,16 @@ const PUBLIC_SUFFIX_BLOCKLIST = new Set([
    const rootDomain = parts.slice(-2).join(".");
    // 5. Safety: avoid setting cookie on known public suffix-like domains
-    const unsafeTlds = new Set([
+    // const unsafeTlds = new Set([
-      "vercel.app",
+    //   "vercel.app",
-      "netlify.app",
+    //   "netlify.app",
-      "github.io",
+    //   "github.io",
-      "firebaseapp.com",
+    //   "firebaseapp.com",
-    ]);
+    // ]);
-    if (unsafeTlds.has(rootDomain)) {
+    // if (unsafeTlds.has(rootDomain)) {
-      return undefined;
+    //   return undefined;
-    }
+    // }
    return `.${rootDomain}`;
  }