WIP cookie auth fixes

packages/auth/src/core/persistence/persistence_user_manager.ts

@@ -18,7 +18,11 @@
 import { getAccountInfo } from '../../api/account_management/account';
 import { ApiKey, AppName, AuthInternal } from '../../model/auth';
 import { UserInternal } from '../../model/user';
-import { PersistedBlob, PersistenceInternal } from '../persistence';
+import {
+  PersistedBlob,
+  PersistenceInternal,
+  PersistenceType
+} from '../persistence';
 import { UserImpl } from '../user/user_impl';
 import { _getInstance } from '../util/instantiator';
 import { inMemoryPersistence } from './in_memory';
@@ -80,7 +84,17 @@ export class PersistenceUserManager {
       if (!response) {
         return null;
       }
-      return UserImpl._fromGetAccountInfoResponse(this.auth, response, blob);
+      const user = await UserImpl._fromGetAccountInfoResponse(
+        this.auth,
+        response,
+        blob
+      );
+      // TODO look into why this is needed, probably something we need to fix in the cookie
+      // persistence layer
+      if (this.persistence.type === PersistenceType.COOKIE) {
+        user.stsTokenManager.refreshToken = 'REDACTED';
+      }
+      return user;
     }
     return UserImpl._fromJSON(this.auth, blob);
   }
@@ -170,6 +184,11 @@ export class PersistenceUserManager {
               response,
               blob
             );
+            // TODO look into why this is needed, probably something we need to fix in the cookie
+            // persistence layer
+            if (persistence.type === PersistenceType.COOKIE) {
+              user.stsTokenManager.refreshToken = 'REDACTED';
+            }
           } else {
             user = UserImpl._fromJSON(auth, blob); // throws for unparsable blob (wrong format)
           }

packages/auth/src/platform_browser/persistence/cookie_storage.ts

@@ -26,6 +26,7 @@ import {
   PersistenceValue,
   StorageEventListener
 } from '../../core/persistence';
+import { _isSafari } from '../../core/util/browser';
 
 // Pull a cookie value from document.cookie
 function getDocumentCookie(name: string): string | null {
@@ -34,6 +35,9 @@ function getDocumentCookie(name: string): string | null {
   return document.cookie.match(matcher)?.[1] ?? null;
 }
 
+// 400 days in seconds https://developer.chrome.com/blog/cookie-max-age-expires
+const COOKIE_MAX_MAX_AGE = 34560000;
+
 // Produce a sanitized cookie name from the persistence key
 function getCookieName(key: string): string {
   // __HOST- doesn't work in localhost https://issues.chromium.org/issues/40196122 but it has
@@ -102,8 +106,18 @@ export class CookiePersistence implements PersistenceInternal {
       return;
     }
     const name = getCookieName(key);
-    document.cookie = `${name}=;Max-Age=34560000;Partitioned;Secure;SameSite=Strict;Path=/;Priority=High`;
-    await fetch(`/__cookies__`, { method: 'DELETE' }).catch(() => undefined);
+    const isDevMode = window.location.protocol === 'http:';
+    // Safari doesn't consider http://localhost to be secure so we need to set the cookie as
+    // insecure in this case.
+    const useInsecureCookie = isDevMode && _isSafari(navigator.userAgent);
+    // Set a logout sentinel value of "" to indicate that the user is logged out, if this is seen by
+    // the middleware, it will know to clear the http-only refresh token from the backend as well.
+    // Along with a long max-age this allows for offline signout.
+    document.cookie = `${name}=;Max-Age=${COOKIE_MAX_MAX_AGE};${useInsecureCookie ? '' : 'Partitioned;Secure;'}SameSite=Lax;Path=/;Priority=High`;
+    // Calling DELETE is entirely optional, but it's a nice optimization to clear the http-only 
+    // refresh token from the backend as well. Fire and forget.
+    // eslint-disable-next-line @typescript-eslint/no-floating-promises
+    fetch(`/__cookies__`, { method: 'DELETE' }).catch(() => undefined);
   }
 
   // Listen for cookie changes, both cookieStore and fallback to polling document.cookie