iron-session: Bad usage. Password must be at least 32 characters long.

[pmbanugo]

I start the server successfully, but I get an error when I open localhost:3000.

Error says

[Req started] {"name":"1 GET /"}
26 |     );
27 |     Object.values(
28 |       normalizeStringPasswordToMap(userSessionOptions.password)
29 |     ).forEach((password) => {
30 |       if (password.length < 32) {
31 |         throw new Error(
                   ^
error: iron-session: Bad usage. Password must be at least 32 characters long.

is there a specific URL I need to add?

[pims]

Make sure your secrets are that long.
Example:

SECRET=t7Qv4eLsAvIzNuYZQZMzVhtKhualX4yk
WSS_API_SECRET=ibURz0ALysYA6HXBnw3xyynnTaaq037a
AUTH_COOKIE_SECRET=KgxY8VNhw8hfMkfa4RK3Wgg4WYsfiF03

[OzzieOrca]

Specifically I think it's AUTH_COOKIE_SECRET that has the 32 character min length validation. From https://github.com/interval/server?tab=readme-ov-file#required-environment-variables:

AUTH_COOKIE_SECRET is a secret that you must provide for use in encrypting session cookies. Any string at least 32 characters in length is valid for this value, but you should use something secure!