add mw.cookie (relies on jquery.cookie)

Author: siddharthvp

README.md

@@ -1,6 +1,7 @@
 ## mock-mediawiki
 ![Node.js CI](https://github.com/wikimedia-gadgets/mock-mediawiki/workflows/test/badge.svg)
 [![NPM version](https://img.shields.io/npm/v/mock-mediawiki.svg)](https://www.npmjs.com/package/mock-mediawiki)
+[![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](http://makeapullrequest.com)
 
 Honest MediaWiki JS interface mocking in Node.js.
 
@@ -55,8 +56,3 @@ For mw.language, [convertGrammar specialisations](https://github.com/wikimedia/m
 
 Please file an issue if anything doesn't work.
 
-### To-do
-
-[![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](http://makeapullrequest.com)
-
-- [ ] Add mw.cookie

index.js

@@ -32,6 +32,8 @@ require("./lib/mediawiki.api/user");
 require("./lib/mediawiki.api/watch");
 require("./lib/mediawiki.storage");
 require("./lib/mediawiki.template");
+require("./lib/jquery.cookie/jquery.cookie");
+require("./lib/mediawiki.cookie/mediawiki.cookie");
 require("./lib/CLDRPluralRuleParser/CLDRPluralRuleParser");
 mw.libs.pluralRuleParser = window.pluralRuleParser;
 require("./lib/mediawiki.cldr/index");

lib/jquery.cookie/jquery.cookie.js

@@ -0,0 +1,100 @@
+/*!
+ * jQuery Cookie Plugin v1.3.1
+ * https://github.com/carhartl/jquery-cookie
+ *
+ * Copyright 2013 Klaus Hartl
+ * Released under the MIT license
+ *
+ * Patched for MediaWiki to handle SameSite flag.
+ */
+(function ($, document, undefined) {
+
+	var pluses = /\+/g;
+
+	function raw(s) {
+		return s;
+	}
+
+	function decoded(s) {
+		try {
+			return unRfc2068(decodeURIComponent(s.replace(pluses, ' ')));
+		} catch(e) {
+			// If the cookie cannot be decoded this should not throw an error.
+			// See T271838.
+			return '';
+		}
+	}
+
+	function unRfc2068(value) {
+		if (value.indexOf('"') === 0) {
+			// This is a quoted cookie as according to RFC2068, unescape
+			value = value.slice(1, -1).replace(/\\"/g, '"').replace(/\\\\/g, '\\');
+		}
+		return value;
+	}
+
+	function fromJSON(value) {
+		return config.json ? JSON.parse(value) : value;
+	}
+
+	var config = $.cookie = function (key, value, options) {
+
+		// write
+		if (value !== undefined) {
+			options = $.extend({}, config.defaults, options);
+
+			if (value === null) {
+				options.expires = -1;
+			}
+
+			if (typeof options.expires === 'number') {
+				var days = options.expires, t = options.expires = new Date();
+				t.setDate(t.getDate() + days);
+			}
+
+			value = config.json ? JSON.stringify(value) : String(value);
+
+			return (document.cookie = [
+				encodeURIComponent(key), '=', config.raw ? value : encodeURIComponent(value),
+				options.expires ? '; expires=' + options.expires.toUTCString() : '', // use expires attribute, max-age is not supported by IE
+				options.path    ? '; path=' + options.path : '',
+				options.domain  ? '; domain=' + options.domain : '',
+				options.secure  ? '; secure' : '',
+				// PATCH: handle SameSite flag --tgr
+				options.sameSite ? '; samesite=' + options.sameSite : ''
+			].join(''));
+		}
+
+		// read
+		var decode = config.raw ? raw : decoded;
+		var cookies = document.cookie.split('; ');
+		var result = key ? null : {};
+		for (var i = 0, l = cookies.length; i < l; i++) {
+			var parts = cookies[i].split('=');
+			var name = decode(parts.shift());
+			var cookie = decode(parts.join('='));
+
+			if (key && key === name) {
+				result = fromJSON(cookie);
+				break;
+			}
+
+			if (!key) {
+				result[name] = fromJSON(cookie);
+			}
+		}
+
+		return result;
+	};
+
+	config.defaults = {};
+
+	$.removeCookie = function (key, options) {
+		if ($.cookie(key) !== null) {
+			$.cookie(key, null, options);
+			return true;
+		}
+		return false;
+	};
+
+})(jQuery, document);

lib/mediawiki.cookie/config.json

@@ -0,0 +1,7 @@
+{
+	"prefix": "testwiki",
+	"domain": "",
+	"path": "/",
+	"expires": 2592000,
+	"sameSiteLegacy": true
+}

lib/mediawiki.cookie/mediawiki.cookie.js

@@ -0,0 +1,164 @@
+'use strict';
+
+var config = require( './config.json' ),
+	defaults = {
+		prefix: config.prefix,
+		domain: config.domain,
+		path: config.path,
+		expires: config.expires,
+		secure: false,
+		sameSite: '',
+		sameSiteLegacy: config.sameSiteLegacy
+	};
+
+/**
+ * Manage cookies in a way that is syntactically and functionally similar
+ * to the `WebRequest#getCookie` and `WebResponse#setcookie` methods in PHP.
+ *
+ * @author Sam Smith <samsmith@wikimedia.org>
+ * @author Matthew Flaschen <mflaschen@wikimedia.org>
+ *
+ * @class mw.cookie
+ * @singleton
+ */
+mw.cookie = {
+
+	/**
+	 * Set or delete a cookie.
+	 *
+	 * **Note:** If explicitly passing `null` or `undefined` for an options key,
+	 * that will override the default. This is natural in JavaScript, but noted
+	 * here because it is contrary to MediaWiki's `WebResponse#setcookie()` method
+	 * in PHP.
+	 *
+	 * When using this for persistent storage of identifiers (e.g. for tracking
+	 * sessions), be aware that persistence may vary slightly across browsers and
+	 * browser versions, and can be affected by a number of factors such as
+	 * storage limits (cookie eviction) and session restore features.
+	 *
+	 * Without an expiry, this creates a session cookie. In a browser, session cookies persist
+	 * for the lifetime of the browser *process*. Including across tabs, page views, and windows,
+	 * until the browser itself is *fully* closed, or until the browser clears all storage for
+	 * a given website. An exception to this is if the user evokes a "restore previous
+	 * session" feature that some browsers have.
+	 *
+	 * @param {string} key
+	 * @param {string|null} value Value of cookie. If `value` is `null` then this method will
+	 *   instead remove a cookie by name of `key`.
+	 * @param {Object|Date|number} [options] Options object, or expiry date
+	 * @param {Date|number|null} [options.expires=wgCookieExpiration] The expiry date of the cookie,
+	 *  or lifetime in seconds. If `options.expires` is null or 0, then a session cookie is set.
+	 * @param {string} [options.prefix=wgCookiePrefix] The prefix of the key
+	 * @param {string} [options.domain=wgCookieDomain] The domain attribute of the cookie
+	 * @param {string} [options.path=wgCookiePath] The path attribute of the cookie
+	 * @param {boolean} [options.secure=false] Whether or not to include the secure attribute.
+	 *   (Does **not** use the wgCookieSecure configuration variable)
+	 * @param {string} [options.sameSite=''] The SameSite flag of the cookie ('None' / 'Lax'
+	 *   / 'Strict', case-insensitive; default is to omit the flag, which results in Lax on
+	 *   modern browsers). Set to None AND set secure=true if the cookie needs to be visible on
+	 *   cross-domain requests.
+	 * @param {boolean} [options.sameSiteLegacy=$wgUseSameSiteLegacyCookies] If true, sameSite=None
+	 *   cookies will also be sent as a non-SameSite cookie with an 'ss0-' prefix, to work around
+	 *   old browsers interpreting the standard differently.
+	 */
+	set: function ( key, value, options ) {
+		var prefix, date, sameSiteLegacy;
+
+		// The 'options' parameter may be a shortcut for the expiry.
+		if ( arguments.length > 2 && ( !options || options instanceof Date || typeof options === 'number' ) ) {
+			options = { expires: options };
+		}
+		// Apply defaults
+		options = $.extend( {}, defaults, options );
+
+		// Don't pass invalid option to $.cookie
+		prefix = options.prefix;
+		delete options.prefix;
+
+		if ( !options.expires ) {
+			// Session cookie (null or zero)
+			// Normalize to absent (undefined) for $.cookie.
+			delete options.expires;
+		} else if ( typeof options.expires === 'number' ) {
+			// Lifetime in seconds
+			date = new Date();
+			date.setTime( Number( date ) + ( options.expires * 1000 ) );
+			options.expires = date;
+		}
+
+		sameSiteLegacy = options.sameSiteLegacy;
+		delete options.sameSiteLegacy;
+
+		if ( value !== null ) {
+			value = String( value );
+		}
+
+		$.cookie( prefix + key, value, options );
+		if ( sameSiteLegacy && options.sameSite && options.sameSite.toLowerCase() === 'none' ) {
+			// Make testing easy by not changing the object passed to the first $.cookie call
+			options = $.extend( {}, options );
+			delete options.sameSite;
+			$.cookie( prefix + 'ss0-' + key, value, options );
+		}
+	},
+
+	/**
+	 * Get the value of a cookie.
+	 *
+	 * @param {string} key
+	 * @param {string} [prefix=wgCookiePrefix] The prefix of the key. If `prefix` is
+	 *   `undefined` or `null`, then `wgCookiePrefix` is used
+	 * @param {Mixed} [defaultValue=null]
+	 * @return {string|null|Mixed} If the cookie exists, then the value of the
+	 *   cookie, otherwise `defaultValue`
+	 */
+	get: function ( key, prefix, defaultValue ) {
+		var result;
+
+		if ( prefix === undefined || prefix === null ) {
+			prefix = defaults.prefix;
+		}
+
+		// Was defaultValue omitted?
+		if ( arguments.length < 3 ) {
+			defaultValue = null;
+		}
+
+		result = $.cookie( prefix + key );
+
+		return result !== null ? result : defaultValue;
+	},
+
+	/**
+	 * Get the value of a SameSite=None cookie, using the legacy ss0- cookie if needed.
+	 *
+	 * @param {string} key
+	 * @param {string} [prefix=wgCookiePrefix] The prefix of the key. If `prefix` is
+	 *   `undefined` or `null`, then `wgCookiePrefix` is used
+	 * @param {Mixed} [defaultValue=null]
+	 * @return {string|null|Mixed} If the cookie exists, then the value of the
+	 *   cookie, otherwise `defaultValue`
+	 */
+	getCrossSite: function ( key, prefix, defaultValue ) {
+		var value;
+
+		value = this.get( key, prefix, null );
+		if ( value === null ) {
+			value = this.get( 'ss0-' + key, prefix, null );
+		}
+		if ( value === null ) {
+			value = defaultValue;
+		}
+		return value;
+	}
+};
+
+if ( window.QUnit ) {
+	module.exports = {
+		setDefaults: function ( value ) {
+			var prev = defaults;
+			defaults = value;
+			return prev;
+		}
+	};
+}

tests/jest.test.js

@@ -60,6 +60,11 @@ describe('test', function () {
 		mw.loader.addStyleTag('body { font-size: 10px; }');
 	}, 10000);
 
+	test('cookie', () => {
+		mw.cookie.set('key', 'value');
+		expect(mw.cookie.get('key')).toBe('value');
+	});
+
 	test('api', async () => {
 		let api = new mw.Api({
 			ajax: {

tests/mocha.test.js

@@ -63,6 +63,11 @@ describe('test', function () {
 		mw.loader.addStyleTag('body { font-size: 10px; }');
 	});
 
+	it('cookie', () => {
+		mw.cookie.set('key', 'value');
+		assert.strictEqual(mw.cookie.get('key'),'value');
+	});
+
 	it('api with login', async () => {
 		if (process.env.WMF_USERNAME && process.env.WMF_PASSWORD) {
 			let api = new mw.Api({