Fixes

Author: dgellow

integration/main_test.go

@@ -53,16 +53,16 @@ func TestMain(m *testing.M) {
 		os.Exit(exitCode)
 	}()
 
-	// Start mock GCP server for OAuth
-	mockGCP := NewMockGCPServer("9090")
-	err := mockGCP.Start()
+	// Start fake GCP server for OAuth
+	fakeGCP := NewFakeGCPServer("9090")
+	err := fakeGCP.Start()
 	if err != nil {
-		fmt.Printf("Failed to start mock GCP server: %v\n", err)
+		fmt.Printf("Failed to start fake GCP server: %v\n", err)
 		exitCode = 1
 		return
 	}
 	defer func() {
-		_ = mockGCP.Stop()
+		_ = fakeGCP.Stop()
 	}()
 
 	// Wait for database to be ready

integration/test_utils.go

@@ -467,14 +467,14 @@ func (c *MCPStreamableClient) close() {
 	c.serverName = ""
 }
 
-// MockGCPServer provides a mock GCP IAM server for testing
-type MockGCPServer struct {
+// FakeGCPServer provides a fake GCP OAuth server for testing
+type FakeGCPServer struct {
 	server *http.Server
 	port   string
 }
 
-// NewMockGCPServer creates a new mock GCP server
-func NewMockGCPServer(port string) *MockGCPServer {
+// NewFakeGCPServer creates a new fake GCP server
+func NewFakeGCPServer(port string) *FakeGCPServer {
 	mux := http.NewServeMux()
 
 	mux.HandleFunc("/auth", func(w http.ResponseWriter, r *http.Request) {
@@ -523,14 +523,14 @@ func NewMockGCPServer(port string) *MockGCPServer {
 		Handler: mux,
 	}
 
-	return &MockGCPServer{
+	return &FakeGCPServer{
 		server: server,
 		port:   port,
 	}
 }
 
-// Start starts the mock GCP server
-func (m *MockGCPServer) Start() error {
+// Start starts the fake GCP server
+func (m *FakeGCPServer) Start() error {
 	go func() {
 		if err := m.server.ListenAndServe(); err != nil && err != http.ErrServerClosed {
 			panic(err)
@@ -541,8 +541,8 @@ func (m *MockGCPServer) Start() error {
 	return nil
 }
 
-// Stop stops the mock GCP server
-func (m *MockGCPServer) Stop() error {
+// Stop stops the fake GCP server
+func (m *FakeGCPServer) Stop() error {
 	ctx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
 	defer cancel()
 	return m.server.Shutdown(ctx)
@@ -552,7 +552,7 @@ func (m *MockGCPServer) Stop() error {
 type TestEnvironment struct {
 	dbCmd   *exec.Cmd
 	mcpCmd  *exec.Cmd
-	mockGCP *MockGCPServer
+	fakeGCP *FakeGCPServer
 	client  *MCPSSEClient
 }
 
@@ -571,8 +571,8 @@ func SetupTestEnvironment(t *testing.T) *TestEnvironment {
 
 	// Start mock GCP server
 	t.Log("🚀 Starting mock GCP server...")
-	env.mockGCP = NewMockGCPServer("9090")
-	if err := env.mockGCP.Start(); err != nil {
+	env.fakeGCP = NewFakeGCPServer("9090")
+	if err := env.fakeGCP.Start(); err != nil {
 		t.Fatalf("Failed to start mock GCP server: %v", err)
 	}
 
@@ -611,8 +611,8 @@ func (env *TestEnvironment) Cleanup() {
 		_ = env.mcpCmd.Process.Kill()
 	}
 
-	if env.mockGCP != nil {
-		_ = env.mockGCP.Stop()
+	if env.fakeGCP != nil {
+		_ = env.fakeGCP.Stop()
 	}
 
 	if env.dbCmd != nil {

internal/server/auth_handlers.go

@@ -9,6 +9,7 @@ import (
 	"strings"
 	"time"
 
+	"github.com/dgellow/mcp-front/internal"
 	"github.com/dgellow/mcp-front/internal/auth"
 	"github.com/dgellow/mcp-front/internal/config"
 	"github.com/dgellow/mcp-front/internal/crypto"
@@ -215,7 +216,7 @@ func (h *AuthHandlers) GoogleCallbackHandler(w http.ResponseWriter, r *http.Requ
 			Value:    encryptedData,
 			Path:     "/",
 			HttpOnly: true,
-			Secure:   true,
+			Secure:   !internal.IsDevelopmentMode(),
 			SameSite: http.SameSiteStrictMode,
 			MaxAge:   int(h.authServer.GetConfig().SessionDuration.Seconds()),
 		})

internal/server/handler.go

@@ -127,6 +127,7 @@ func NewServer(ctx context.Context, cfg *config.Config) (*Server, error) {
 		authConfig := auth.Config{
 			Issuer:              oauthAuth.Issuer,
 			TokenTTL:            ttl,
+			SessionDuration:     24 * time.Hour, // Default session duration for browser SSO
 			AllowedDomains:      oauthAuth.AllowedDomains,
 			AllowedOrigins:      oauthAuth.AllowedOrigins,
 			GoogleClientID:      oauthAuth.GoogleClientID,