fyindr
/
siimee
Segui 4
Vota 3
Forka 1
Codice Pull Requests 1 Rilasci 4 Wiki Attività
Sfoglia il codice sorgente

:pencil2: Removed secure attribute from auth cookie

juan-filtering-match-pool
tomit4 2 anni fa
parent
128f2b1f17
commit
a752ce912c
3 ha cambiato i file con 19 aggiunte e 6 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 1
    1
      frontend/src/components/onboarding/Auth.vue
  2. 1
    1
      frontend/src/views/HomeView.vue
  3. 17
    4
      frontend/src/views/LoginView.vue

+ 1
- 1
frontend/src/components/onboarding/Auth.vue Vedi File 

@@ -51,7 +51,7 @@ export default {
51 51 
                 ...this.answered,
52 52 
                 sessionToken: sessionToken,
53 53 
             })
54 
-            document.cookie = `siimee_session=${sessionInfo.hashedSessionToken}; max-age=600; path=/; secure`
54 
+            document.cookie = `siimee_session=${sessionInfo.hashedSessionToken}; max-age=600; path=/`
55 55 
         } catch (err) {
56 56 
             // TODO: render an error page in this component displaying which
57 57 
             // error occurred and how to reach out to staff

+ 1
- 1
frontend/src/views/HomeView.vue Vedi File 

@@ -106,7 +106,7 @@ export default {
106 106 
             )
107 107 
             if (removedSession.error)
108 108 
                 console.error('ERROR :=>', removedSession.error)
109 
-            document.cookie = `siimee_session=''; max-age=0; path=/; secure`
109 
+            document.cookie = `siimee_session=''; max-age=0; path=/`
110 110 
             this.$router.push('/onboarding')
111 111 
         },
112 112 
         // this can be placed in utils/notification.js

+ 17
- 4
frontend/src/views/LoginView.vue Vedi File 

@@ -3,9 +3,22 @@ main.view--login
3 3 
     article.pa12
4 4 
         div(v-if='emailSentSuccessfully === null')
5 5 
             form
6 
-                w-input.mb4(label="User E-mail" tile outline v-model="form.email" inner-icon-left='icon-envelope')
7 
-                w-input(label="Password" v-model="form.password" type="password" tile outline inner-icon-left='icon-eye')
8 
-                w-button.xs12.mt12(@click="login") submit
6 
+                w-input.mb4(
7 
+                    inner-icon-left='icon-envelope'
8 
+                    label='User E-mail'
9 
+                    outline
10 
+                    tile
11 
+                    v-model='form.email'
12 
+                )
13 
+                w-input(
14 
+                    inner-icon-left='icon-eye'
15 
+                    label='Password'
16 
+                    outline
17 
+                    tile
18 
+                    type='password'
19 
+                    v-model='form.password'
20 
+                )
21 
+                w-button.xs12.mt12(@click='login') submit
9 22 
         div(v-else-if='emailSentSuccessfully === false')
10 23 
             p.verify-message Email Was Not Sent Successfully, please contact your Email Service Provider or Systems Administrator.
11 24 
         div(v-else)
 
@@ -42,7 +55,7 @@ export default {
42 55 
             if (sessionInfo.emailSentSuccessfully) {
43 56 
                 this.emailSentSuccessfully = true
44 57 
             }
45 
-            document.cookie = `siimee_session=${sessionInfo.hashedSessionToken}; max-age=600; path=/; secure`
58 
+            document.cookie = `siimee_session=${sessionInfo.hashedSessionToken}; max-age=600; path=/`
46 59 
         },
47 60 
     },
48 61 
 }

Write Preview
Loading…
Annulla
Salva