Merge pull request 'Refactored to deal with cookie hell' (#82 ) from payments into master

Reviewed-on: #82
Refactored to deal with cookie hell
2026-06-05 09:20:17 +02:00 · 2026-06-05 09:19:32 +02:00 · 2026-06-05 08:56:17 +02:00 · 2026-06-05 08:55:31 +02:00 · 2026-06-05 08:18:12 +02:00 · 2026-06-05 08:17:32 +02:00
1 changed files with 6 additions and 17 deletions
@@ -42,24 +42,13 @@ public static class Api
            options.Scope.Add("profile");
            options.Scope.Add("email");
-            options.Events = new OpenIdConnectEvents
+            options.CorrelationCookie.SecurePolicy = CookieSecurePolicy.Always;
-            {
+            options.CorrelationCookie.SameSite = SameSiteMode.None;
-                OnRedirectToIdentityProvider = context =>
+            options.CorrelationCookie.HttpOnly = true;
                {
                    if (!string.IsNullOrEmpty(context.ProtocolMessage.RedirectUri) && context.ProtocolMessage.RedirectUri.StartsWith("http://", StringComparison.OrdinalIgnoreCase))
                    {
                        var uriBuilder = new UriBuilder(context.ProtocolMessage.RedirectUri)
                        {
                            Scheme = "https",
                            Port = -1,
                        };
-                        context.ProtocolMessage.RedirectUri = uriBuilder.Uri.ToString();
+            options.NonceCookie.SecurePolicy = CookieSecurePolicy.Always;
-                    }
+            options.NonceCookie.SameSite = SameSiteMode.None;
-
+            options.NonceCookie.HttpOnly = true;
                    return Task.CompletedTask;
                },
            };
        });
        return services;
Author	SHA1	Message	Date
khwezi	f001b02633	Merge pull request 'Refactored to deal with cookie hell' (#82 ) from payments into master Reviewed-on: #82	2026-06-05 09:20:17 +02:00
Khwezi Mngoma	90a11dc65e	Refactored to deal with cookie hell continuous-integration/drone/pr Build is passing Details	2026-06-05 09:19:32 +02:00
khwezi	de955a96a8	Merge pull request 'Removed login proto handling' (#81 ) from payments into master Reviewed-on: #81	2026-06-05 08:56:17 +02:00
Khwezi Mngoma	cdf5cfb5cd	Removed login proto handling continuous-integration/drone/pr Build is passing Details	2026-06-05 08:55:31 +02:00
khwezi	c4d3bb4cdf	Merge pull request 'Simplified login process' (#80 ) from payments into master Reviewed-on: #80	2026-06-05 08:18:12 +02:00
Khwezi Mngoma	65f102f18a	Simplified login process continuous-integration/drone/pr Build is passing Details	2026-06-05 08:17:32 +02:00
khwezi	cdc80db214	Merge pull request 'Refactored logout endpoint' (#79 ) from payments into master Reviewed-on: #79	2026-06-05 08:15:50 +02:00