Suspectus/gandalf-reborn
1
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

Update AuthController to adjust cookie settings and remove unused endpoint; change BaseUrl in development settings

Browse Source
This commit is contained in:
Christian Werner 2025-10-21 01:25:00 +02:00
parent 6db373573c
commit ceb1489eda
2 changed files with 3 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
src/dotnet/Suspectus.Gandalf.Mithrandir.Api/Controllers/AuthController.cs
View File

@ -87,9 +87,9 @@ public class AuthController : ControllerBase
Response.Cookies.Append("MithrandirSession", tokenRequestResponse.SubjectId, new CookieOptions Response.Cookies.Append("MithrandirSession", tokenRequestResponse.SubjectId, new CookieOptions
{ {
Secure = true, Secure = false, // TODO set to true in production
HttpOnly = true, HttpOnly = true,
SameSite = SameSiteMode.None, SameSite = SameSiteMode.Lax,
Expires = tokenRequestResponse.RefreshTokenExpiresAt.AddSeconds(-10) Expires = tokenRequestResponse.RefreshTokenExpiresAt.AddSeconds(-10)
}); });
@ -110,21 +110,6 @@ public class AuthController : ControllerBase
return Ok(true); return Ok(true);
} }
[HttpGet("[action]")]
public async Task<IActionResult> Me()
{
var sessionExists = Request.Cookies.ContainsKey("MithrandirSession");
if (!sessionExists)
{
return Unauthorized("Session expired.");
}
return Ok(sessionExists);
}
private string GetCacheKey(string subjectId, string appId, string tokenType) private string GetCacheKey(string subjectId, string appId, string tokenType)
{ {
return $"{subjectId}:{appId}:{tokenType}"; return $"{subjectId}:{appId}:{tokenType}";

2
src/dotnet/Suspectus.Gandalf.Palantir.Api/appsettings.Development.json
View File

@ -10,5 +10,5 @@
}, },
"HashIdSalt": "RD7MTWZsTm2DVF9WAksbpzp`Daccgk&4w~Qk^v99W~LtpXefUt2b5~~o52#7q^MzRC`3U^@%SLAp%QF$xr@fZ$TgA@vrD5qkwovv%9Rb`MEUEr4TSNLuXq7P9yQTH~dRvk`x~ueEPvup^c7w`wfo7EoQWJa99dSe%wLy`R7iyz~kZ$JR$QhqwM4pcHFtxLtSf^QdtLhssZipKi9T#J%EP#9jQR&NC$q5Pt4J7oyYq~WyfbAYZxMMc~s4Qoonnyyh", "HashIdSalt": "RD7MTWZsTm2DVF9WAksbpzp`Daccgk&4w~Qk^v99W~LtpXefUt2b5~~o52#7q^MzRC`3U^@%SLAp%QF$xr@fZ$TgA@vrD5qkwovv%9Rb`MEUEr4TSNLuXq7P9yQTH~dRvk`x~ueEPvup^c7w`wfo7EoQWJa99dSe%wLy`R7iyz~kZ$JR$QhqwM4pcHFtxLtSf^QdtLhssZipKi9T#J%EP#9jQR&NC$q5Pt4J7oyYq~WyfbAYZxMMc~s4Qoonnyyh",
"JwtSecret": "sPKw4qrxSDrVAPMkpfXRmrmY#%f`@im&nrzhTYJSbg7jDEePaoobzvTx$q@Dt3`^xEVquT&XW%evc`7rR`^j%2MnHrHrxAteC5CADguRDQHN5HfS%^2PJ7VWJwn~YV2c~aSe`T@wPPLwnwbpSk~E%wxMfUbDDm#XZh7Z@9t24uiT9nxQpt^ZKcSc#CEeW4^#hc^vaLkeYT73RcC#&vSZMdr5e$Z~i&f$73%z@^yyAoFutLPmtgjosDW3mPb4z~h^", "JwtSecret": "sPKw4qrxSDrVAPMkpfXRmrmY#%f`@im&nrzhTYJSbg7jDEePaoobzvTx$q@Dt3`^xEVquT&XW%evc`7rR`^j%2MnHrHrxAteC5CADguRDQHN5HfS%^2PJ7VWJwn~YV2c~aSe`T@wPPLwnwbpSk~E%wxMfUbDDm#XZh7Z@9t24uiT9nxQpt^ZKcSc#CEeW4^#hc^vaLkeYT73RcC#&vSZMdr5e$Z~i&f$73%z@^yyAoFutLPmtgjosDW3mPb4z~h^",
"BaseUrl": "https://localhost:7269" "BaseUrl": "http://localhost:5035"
} }