FEAT: Allow to set domain, secure and same_site on cookies

Author: lluissalord

setup.py

@@ -5,7 +5,7 @@
 
 setuptools.setup(
     name="streamlit-authenticator",
-    version="0.4.2-alpha",
+    version="0.4.2-alpha1",
     author="Mohammad Khorasani",
     author_email="[email protected]",
     description="A secure authentication module to manage user access in a Streamlit application.",

streamlit_authenticator/controllers/cookie_controller.py

@@ -6,7 +6,7 @@
 - typing: Provides standard type hints for Python functions.
 """
 
-from typing import Any, Dict, Optional
+from typing import Any, Dict, Literal, Optional, Union
 
 from ..models import CookieModel
 
@@ -21,7 +21,10 @@ def __init__(
             cookie_name: Optional[str] = None,
             cookie_key: Optional[str] = None,
             cookie_expiry_days: Optional[float] = None,
-            path: Optional[str] = None
+            path: Optional[str] = None,
+            domain: Optional[str] = None,
+            secure: Optional[bool] = None,
+            same_site: Union[bool, None, Literal["lax", "strict"]] = "strict",
             ) -> None:
         """
         Initializes the CookieController instance.
@@ -40,7 +43,10 @@ def __init__(
         self.cookie_model = CookieModel(cookie_name,
                                         cookie_key,
                                         cookie_expiry_days,
-                                        path)
+                                        path,
+                                        domain,
+                                        secure,
+                                        same_site)
     def delete_cookie(self) -> None:
         """
         Deletes the re-authentication cookie from the user's browser.

streamlit_authenticator/models/cookie_model.py

@@ -10,12 +10,13 @@
 - extra_streamlit_components: Provides cookie management for Streamlit.
 """
 
-from typing import Any, Dict, Optional
 from datetime import datetime, timedelta
+from typing import Any, Dict, Literal, Optional, Union
+
+import extra_streamlit_components as stx
 import jwt
-from jwt import DecodeError, InvalidSignatureError
 import streamlit as st
-import extra_streamlit_components as stx
+from jwt import DecodeError, InvalidSignatureError
 
 from ..utilities import Helpers
 
@@ -30,7 +31,10 @@ def __init__(
             cookie_name: Optional[str] = None,
             cookie_key: Optional[str] = None,
             cookie_expiry_days: Optional[float] = None,
-            path: Optional[str] = None
+            path: Optional[str] = None,
+            domain: Optional[str] = None,
+            secure: Optional[bool] = None,
+            same_site: Union[bool, None, Literal["lax", "strict"]] = "strict",
             ) -> None:
         """
         Initializes the CookieModel instance.
@@ -58,6 +62,9 @@ def __init__(
         self.cookie_manager         =   stx.CookieManager()
         self.token                  =   None
         self.exp_date               =   None
+        self.domain                 =   domain
+        self.secure                 =   secure
+        self.same_site              =   same_site
     def delete_cookie(self) -> None:
         """
         Deletes the re-authentication cookie from the user's browser.
@@ -96,7 +103,10 @@ def set_cookie(self) -> None:
             token = self._token_encode()
             self.cookie_manager.set(self.cookie_name, token,
                                     expires_at=datetime.now() + \
-                                    timedelta(days=self.cookie_expiry_days))
+                                    timedelta(days=self.cookie_expiry_days),
+                                    domain=self.domain,
+                                    secure=self.secure,
+                                    same_site=self.same_site)
     def _set_exp_date(self) -> float:
         """
         Computes the expiration timestamp for the authentication cookie.

streamlit_authenticator/views/authentication_view.py

@@ -16,15 +16,17 @@
 
 import streamlit as st
 
-from ..controllers import AuthenticationController, CookieController
 from .. import params
-from ..utilities import (DeprecationError,
-                         Encryptor,
-                         Helpers,
-                         LogoutError,
-                         ResetError,
-                         UpdateError,
-                         Validator)
+from ..controllers import AuthenticationController, CookieController
+from ..utilities import (
+    DeprecationError,
+    Encryptor,
+    Helpers,
+    LogoutError,
+    ResetError,
+    UpdateError,
+    Validator,
+)
 
 
 class Authenticate:
@@ -41,6 +43,9 @@ def __init__(
             validator: Optional[Validator] = None,
             auto_hash: bool = True,
             api_key: Optional[str] = None,
+            domain: Optional[str] = None,
+            secure: Optional[bool] = None,
+            same_site: Union[bool, None, Literal["lax", "strict"]] = "strict",
             **kwargs: Optional[Dict[str, Any]]
             ) -> None:
         """
@@ -77,7 +82,10 @@ def __init__(
         self.cookie_controller          =   CookieController(cookie_name,
                                                              cookie_key,
                                                              cookie_expiry_days,
-                                                             self.path)
+                                                             self.path,
+                                                             domain,
+                                                             secure,
+                                                             same_site)
         self.authentication_controller  =   AuthenticationController(credentials,
                                                                      validator,
                                                                      auto_hash,