Authetication - decode cookie

[Francynox]

the /login endpoint sends a cookie; this cookie uses the CookieEncoding.URI_ENCODING encoding by default.

before executing the parseAuthorizationHeader method you must decode the cookie, otherwise it will never be recognized as correct

[ESchouten]

Thanks for the PR! Seems like a good fix, will look into this tomorrow.
For some reason the current implementation seems to work for me for some reason as well, time to investigate.

[ESchouten]

@Francynox the function we use to retrieve the cookie value, has CookieEncoding.URI_ENCODING, and seems to call decodeCookieValue itself with this parameter.

public operator fun get(name: String, encoding: CookieEncoding = CookieEncoding.URI_ENCODING): String? {
  val rawValue = rawCookies[name] ?: return null
  return map.computeIfAbsent(encoding to name) { decodeCookieValue(rawValue, encoding) }
}

Could you re-verify whether the current implementation works for you or not?

[Francynox]

I was trying to work on an interface in svelte that would interface with api

when I was saving cookies I had noticed that it was no longer possible to access the graphql playdround, it returned error 401

printing the value of the cookie read from the ktor server

• for the page that had requested the cookies was correct (Bearer ey...)

• for the playground page the cookie was decoded wrong (Bearer+ey...)

I had tried then also with Postman and it seemed that the problem was there too

Trying again now with Postman the current implementation works!!! evidently there was an error in the interface I was trying to do

[ESchouten]

Good to hear!
I appreciate you for taking the time to open a PR in order to improve the project
Thanks 👍🏻

[ESchouten]

@Francynox for authenticated endpoints in playground, you can include the token as Authorization header