johan
/
mission-control
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(auth): allow login on fresh HTTP Docker installs (#304) 

* fix(auth): allow login cookies on HTTP docker deployments

* test(types): avoid readonly process.env writes in session-cookie tests
This commit is contained in:
nyk 2026-03-12 22:14:47 +07:00 committed by GitHub
parent 58b6f5a6fc
commit eddfd752c2
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 41 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
src/lib/__tests__/session-cookie.test.ts Normal file
View File

@ -0,0 +1,40 @@
import { afterEach, describe, expect, it } from 'vitest'
import { getMcSessionCookieOptions } from '../session-cookie'
describe('getMcSessionCookieOptions', () => {
const env = process.env as Record<string, string | undefined>
const originalNodeEnv = env.NODE_ENV
const originalCookieSecure = env.MC_COOKIE_SECURE
afterEach(() => {
if (originalNodeEnv === undefined) delete env.NODE_ENV
else env.NODE_ENV = originalNodeEnv
if (originalCookieSecure === undefined) delete env.MC_COOKIE_SECURE
else env.MC_COOKIE_SECURE = originalCookieSecure
})
it('does not force secure cookies on plain HTTP in production when MC_COOKIE_SECURE is unset', () => {
env.NODE_ENV = 'production'
delete env.MC_COOKIE_SECURE
const options = getMcSessionCookieOptions({ maxAgeSeconds: 60, isSecureRequest: false })
expect(options.secure).toBe(false)
})
it('sets secure cookies for HTTPS requests when MC_COOKIE_SECURE is unset', () => {
env.NODE_ENV = 'production'
delete env.MC_COOKIE_SECURE
const options = getMcSessionCookieOptions({ maxAgeSeconds: 60, isSecureRequest: true })
expect(options.secure).toBe(true)
})
it('respects MC_COOKIE_SECURE override', () => {
env.NODE_ENV = 'production'
env.MC_COOKIE_SECURE = '1'
const options = getMcSessionCookieOptions({ maxAgeSeconds: 60, isSecureRequest: false })
expect(options.secure).toBe(true)
})
})

2
src/lib/session-cookie.ts
View File

@ -35,7 +35,7 @@ function envFlag(name: string): boolean | undefined {
export function getMcSessionCookieOptions(input: { maxAgeSeconds: number; isSecureRequest?: boolean }): Partial<ResponseCookie> {
const secureEnv = envFlag('MC_COOKIE_SECURE')
const secure = secureEnv ?? input.isSecureRequest ?? process.env.NODE_ENV === 'production'
const secure = secureEnv ?? input.isSecureRequest ?? false
return {
httpOnly: true,