Cookies, kept simple

Only essential cookies for sign‑in and protection. No analytics or ads.

What each cookie does

Session cookie
Session cookie

Keeps you securely signed in (NextAuth). HttpOnly, Secure in production.

CSRF cookie
CSRF cookie

Protects sign‑in and sensitive actions from cross‑site attacks.

Preferences
Preferences

Optional UI settings stored locally (e.g., theme). No tracking.

Cookie categories

EssentialRequired

Required for sign‑in and security (NextAuth session & CSRF).

Always enabled.

PreferencesOptional

Optional UI settings like theme. Stored locally, not shared.

Your preference is stored in your browser.

AnalyticsNot used

Not used. If added, will require consent before enabling.

This category is not in use.

AdvertisingNot used

Not used and not planned. No tracking across sites.

This category is not in use.

When cookies expire

  1. Session cookie

    Expires when you sign out or the session naturally ends.

  2. CSRF cookie

    Short‑lived; renewed as needed to protect actions.

  3. Preferences

    Stored in your browser until you clear them.

Cookie settings
Manage optional preferences. Essential cookies remain enabled for security.
You can also open the full settings dialog for more info.
Legal details
Summary of our cookie practices.

We use strictly necessary cookies for authentication and basic functionality. No advertising or analytics cookies are set.

Cookies we use

  • NextAuth session cookie: keeps you signed in securely
  • NextAuth CSRF cookie: protects sign‑in and form actions
  • Preference cookies: remember simple UI choices (if enabled)

Third‑party services

Sign‑in uses OAuth with providers such as GitHub or Google via NextAuth. These flows may set temporary cookies during authentication.

Control

You can clear cookies in your browser settings at any time. If you block essential cookies, sign‑in may not work.