Merge pull request #14 from FluffyDiscord/cookie_secure

FluffyDiscord · web-flow · commit 3a3b52ebd0fc · 2025-01-28T22:23:53.000+01:00
secure cookie is no longer ignored
diff --git a/config/services.php b/config/services.php
@@ -97,7 +97,7 @@
                     param('session.metadata.update_threshold'),
                 ]),
             service(RequestStack::class),
-            false,
+            null,
         ])
     ;
 
diff --git a/src/Session/WorkerSessionStorageFactory.php b/src/Session/WorkerSessionStorageFactory.php
@@ -9,7 +9,6 @@
 use Symfony\Component\HttpFoundation\Session\Storage\Proxy\AbstractProxy;
 use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageFactoryInterface;
 use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageInterface;
-use Symfony\Contracts\Service\ResetInterface;
 
 readonly class WorkerSessionStorageFactory implements SessionStorageFactoryInterface
 {
@@ -24,19 +23,32 @@ public function __construct(
         private ?MetadataBag                                $metaBag,
 
         private RequestStack                                $requestStack,
-        private bool                                        $secure = false,
+        private ?bool                                       $secure = null,
     )
     {
+        if ($this->secure !== null) {
+            trigger_deprecation("fluffydiscord/roadrunner-symfony-bundle", "3.2.0", 'Passing "$secure" in constructor is deprecated, use framework.session options instead');
+        }
     }
 
     public function createStorage(?Request $request): SessionStorageInterface
     {
         $workerSessionStorage = new WorkerSessionStorage($this->options, $this->handler, $this->metaBag, $this->requestStack);
 
-        if ($this->secure && $request?->isSecure()) {
+        if ($this->isSecure($request)) {
             $workerSessionStorage->setOptions(['cookie_secure' => true]);
         }
 
         return $workerSessionStorage;
     }
+
+    private function isSecure(?Request $request): bool
+    {
+        $cookieSecure = $this->secure;
+        if ($cookieSecure === null) {
+            $cookieSecure = 'auto' === ($this->options['cookie_secure'] ?? null);
+        }
+
+        return $cookieSecure && $request?->isSecure();
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -97,7 +97,7 @@`
`97`	`97`	`param('session.metadata.update_threshold'),`
`98`	`98`	`]),`
`99`	`99`	`service(RequestStack::class),`
`100`		`- false,`
	`100`	`+ null,`
`101`	`101`	`])`
`102`	`102`	`;`
`103`	`103`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,6 @@`
`9`	`9`	`use Symfony\Component\HttpFoundation\Session\Storage\Proxy\AbstractProxy;`
`10`	`10`	`use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageFactoryInterface;`
`11`	`11`	`use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageInterface;`
`12`		`-use Symfony\Contracts\Service\ResetInterface;`
`13`	`12`
`14`	`13`	`readonly class WorkerSessionStorageFactory implements SessionStorageFactoryInterface`
`15`	`14`	`{`
`@@ -24,19 +23,32 @@ public function __construct(`
`24`	`23`	`private ?MetadataBag $metaBag,`
`25`	`24`
`26`	`25`	`private RequestStack $requestStack,`
`27`		`- private bool $secure = false,`
	`26`	`+ private ?bool $secure = null,`
`28`	`27`	`)`
`29`	`28`	`{`
	`29`	`+ if ($this->secure !== null) {`
	`30`	`+ trigger_deprecation("fluffydiscord/roadrunner-symfony-bundle", "3.2.0", 'Passing "$secure" in constructor is deprecated, use framework.session options instead');`
	`31`	`+ }`
`30`	`32`	`}`
`31`	`33`
`32`	`34`	`public function createStorage(?Request $request): SessionStorageInterface`
`33`	`35`	`{`
`34`	`36`	`$workerSessionStorage = new WorkerSessionStorage($this->options, $this->handler, $this->metaBag, $this->requestStack);`
`35`	`37`
`36`		`- if ($this->secure && $request?->isSecure()) {`
	`38`	`+ if ($this->isSecure($request)) {`
`37`	`39`	`$workerSessionStorage->setOptions(['cookie_secure' => true]);`
`38`	`40`	`}`
`39`	`41`
`40`	`42`	`return $workerSessionStorage;`
`41`	`43`	`}`
	`44`	`+`
	`45`	`+ private function isSecure(?Request $request): bool`
	`46`	`+ {`
	`47`	`+ $cookieSecure = $this->secure;`
	`48`	`+ if ($cookieSecure === null) {`
	`49`	`+ $cookieSecure = 'auto' === ($this->options['cookie_secure'] ?? null);`
	`50`	`+ }`
	`51`	`+`
	`52`	`+ return $cookieSecure && $request?->isSecure();`
	`53`	`+ }`
`42`	`54`	`}`