Merge pull request #14 from FluffyDiscord/cookie_secure

secure cookie is no longer ignored
FluffyDiscord · Jan 28, 2025 · 3a3b52e · 3a3b52e
2 parents 2eaf086 + 24c7ce0
commit 3a3b52e
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 4 deletions.
diff --git a/config/services.php b/config/services.php
@@ -97,7 +97,7 @@
                     param('session.metadata.update_threshold'),
                 ]),
             service(RequestStack::class),
-            false,
+            null,
         ])
     ;
 

diff --git a/src/Session/WorkerSessionStorageFactory.php b/src/Session/WorkerSessionStorageFactory.php
@@ -9,7 +9,6 @@
 use Symfony\Component\HttpFoundation\Session\Storage\Proxy\AbstractProxy;
 use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageFactoryInterface;
 use Symfony\Component\HttpFoundation\Session\Storage\SessionStorageInterface;
-use Symfony\Contracts\Service\ResetInterface;
 
 readonly class WorkerSessionStorageFactory implements SessionStorageFactoryInterface
 {
@@ -24,19 +23,32 @@ public function __construct(
         private ?MetadataBag                                $metaBag,
 
         private RequestStack                                $requestStack,
-        private bool                                        $secure = false,
+        private ?bool                                       $secure = null,
     )
     {
+        if ($this->secure !== null) {
+            trigger_deprecation("fluffydiscord/roadrunner-symfony-bundle", "3.2.0", 'Passing "$secure" in constructor is deprecated, use framework.session options instead');
+        }
     }
 
     public function createStorage(?Request $request): SessionStorageInterface
     {
         $workerSessionStorage = new WorkerSessionStorage($this->options, $this->handler, $this->metaBag, $this->requestStack);
 
-        if ($this->secure && $request?->isSecure()) {
+        if ($this->isSecure($request)) {
             $workerSessionStorage->setOptions(['cookie_secure' => true]);
         }
 
         return $workerSessionStorage;
     }
+
+    private function isSecure(?Request $request): bool
+    {
+        $cookieSecure = $this->secure;
+        if ($cookieSecure === null) {
+            $cookieSecure = 'auto' === ($this->options['cookie_secure'] ?? null);
+        }
+
+        return $cookieSecure && $request?->isSecure();
+    }
 }
-Original file line number
+Diff line change
@@ Expand Up / @@ -97,7 +97,7 @@ @@
                         param('session.metadata.update_threshold'),
                     ]),
                 service(RequestStack::class),
-                false,
+                null,
             ])
         ;
@@ Expand Down @@