From cb6525636cdea56ffd26e425914c2d84126eb36a Mon Sep 17 00:00:00 2001 From: amass Date: Thu, 9 Jan 2025 12:21:06 +0800 Subject: [PATCH] make cookie domain prepend . --- WebApplication/Application.cpp | 25 +++++++++++++++++++------ WebApplication/model/AuthModel.h | 1 + 2 files changed, 20 insertions(+), 6 deletions(-) diff --git a/WebApplication/Application.cpp b/WebApplication/Application.cpp index c8684d7..913c2a8 100644 --- a/WebApplication/Application.cpp +++ b/WebApplication/Application.cpp @@ -68,14 +68,25 @@ Application::Application(const Wt::WEnvironment &env, bool embedded) } } } - LOG(info) << "url: " << url(); - LOG(info) << "relative resources url: " << relativeResourcesUrl(); - LOG(info) << "resources url: " << resourcesUrl(); - LOG(info) << "internal path: " << internalPath(); - LOG(info) << "bookmark url: " << bookmarkUrl("/"); - LOG(info) << "relative url: " << resolveRelativeUrl("/"); auto app = Amass::Singleton::instance(); + bool authTokensEnabled = app->authService().authTokensEnabled(); + std::string authTokenCookieName = app->authService().authTokenCookieName(); + std::string authTokenCookieDomain = app->authService().authTokenCookieDomain(); + if (env.hostName().find("amass.fun") != std::string::npos) { + if (authTokenCookieDomain != AuthModel::CookieDomain) { + app->authService().setAuthTokensEnabled(authTokensEnabled, authTokenCookieName, AuthModel::CookieDomain); + } + } else { + if (!authTokenCookieDomain.empty()) { + app->authService().setAuthTokensEnabled(authTokensEnabled, authTokenCookieName, ""); + } + } + + LOG(info) << "url: " << url() << ", host name: " << env.hostName(); + LOG(info) << "resources url: " << resourcesUrl() << ", relative resources url: " << relativeResourcesUrl(); + LOG(info) << "internal path: " << internalPath() << ", bookmark url: " << bookmarkUrl(); + m_loginPage = std::make_unique(app->authService(), m_session->users(), m_session->login()); if (externalPath.empty()) { m_loginPage->processEnvironment(); @@ -130,6 +141,7 @@ void Application::authEvent() { auto token = env.getCookie(service.authTokenCookieName()); if (token == nullptr) { Wt::Http::Cookie cookie(service.authTokenCookieName(), service.createAuthToken(u)); + cookie.setDomain(service.authTokenCookieDomain()); cookie.setPath(AuthModel::CookiePath); cookie.setExpires(Wt::WDateTime()); setCookie(cookie); @@ -248,6 +260,7 @@ void Server::insertCookie(const std::string &cookie) { Wt::Http::Cookie Server::updateCookie(const std::string &oldCookie, const Wt::Auth::AuthTokenResult &result, bool secure) { Wt::Http::Cookie cookie(m_authService->authTokenCookieName()); cookie.setPath(AuthModel::CookiePath); + cookie.setDomain(m_authService->authTokenCookieDomain()); cookie.setSecure(secure); if (result.state() == Wt::Auth::AuthTokenState::Invalid) { if (m_cookies.contains(oldCookie)) { diff --git a/WebApplication/model/AuthModel.h b/WebApplication/model/AuthModel.h index 08d80ca..9b40ec1 100644 --- a/WebApplication/model/AuthModel.h +++ b/WebApplication/model/AuthModel.h @@ -6,6 +6,7 @@ class AuthModel : public Wt::Auth::AuthModel { public: static constexpr auto CookiePath = "/"; + static constexpr auto CookieDomain = ".amass.fun"; AuthModel(const Wt::Auth::AuthService &baseAuth, Wt::Auth::AbstractUserDatabase &users); Wt::Auth::User processAuthToken() final; void setRememberMeCookie(const Wt::Auth::User &user) final;