session cookie being set

Tiernebre · Jul 20, 2024 · 64bee87 · 64bee87
1 parent 232cd3d
commit 64bee87
Show file tree

Hide file tree

Showing 5 changed files with 36 additions and 9 deletions.
diff --git a/src/http.ts b/src/http.ts
@@ -1,15 +1,21 @@
 import { STATUS_CODE, StatusCode } from "@std/http";
 
+type HtmlResponseParameters = {
+  status?: StatusCode;
+  headers?: HeadersInit;
+};
+
 export const htmlResponse = (
   html: string,
-  status: StatusCode = STATUS_CODE.OK,
+  { status = STATUS_CODE.OK, headers = {} }: HtmlResponseParameters = {},
 ) =>
   new Response(
     html,
     {
       status,
       headers: {
         "Content-Type": "text/html",
+        ...headers,
       },
     },
   );

diff --git a/src/pages/registration.ts b/src/pages/registration.ts
@@ -55,7 +55,9 @@ const renderErrorPage = (error: Error) =>
     layout(/*html*/ `
       <p>Got error when registering: ${error.message}</p>
     `),
-    STATUS_CODE.BadRequest,
+    {
+      status: STATUS_CODE.BadRequest,
+    },
   );
 
 export default httpRouter({

diff --git a/src/pages/session.ts b/src/pages/session.ts
@@ -1,4 +1,4 @@
-import { STATUS_CODE } from "@std/http";
+import { setCookie, STATUS_CODE } from "@std/http";
 import { sql } from "../db/mod.ts";
 import { Registration } from "../domain/registration.ts";
 import { Session, type SessionForm } from "../domain/session.ts";
@@ -45,19 +45,33 @@ const createSession = async ({ id }: Registration) => {
   return session;
 };
 
-const renderLoggedIn = (session: Session) =>
-  htmlResponse(
+const renderLoggedIn = (session: Session) => {
+  const headers = new Headers();
+  setCookie(headers, {
+    name: "session",
+    value: session.id,
+    httpOnly: true,
+    sameSite: "Strict",
+  });
+  headers.set("content-type", "text/html");
+  return new Response(
     /*html*/ `
-    <div>Logged in ${session.id}</div>
-  `,
+      <div>Logged in ${session.id}</div>
+    `,
+    {
+      headers,
+    },
   );
+};
 
 const renderError = (error: Error) =>
   htmlResponse(
     /*html*/ `
     <div>Could not login due to an error: ${error}</div>
   `,
-    STATUS_CODE.BadRequest,
+    {
+      status: STATUS_CODE.BadRequest,
+    },
   );
 
 const get = () =>

diff --git a/tests/api.ts b/tests/api.ts
@@ -8,6 +8,7 @@ export const post = (url: string, body: Record<string, string>) =>
       "Content-Type": "application/x-www-form-urlencoded",
     },
     body: new URLSearchParams(body),
+    credentials: "include",
   });
 
 export const register = async () => {

diff --git a/tests/session.api.test.ts b/tests/session.api.test.ts
@@ -1,4 +1,4 @@
-import { STATUS_CODE } from "@std/http";
+import { getSetCookies, STATUS_CODE } from "@std/http";
 import { start } from "../src/server.ts";
 import { assert, assertEquals } from "@std/assert";
 import { SESSION_URL } from "./utils.ts";
@@ -66,4 +66,8 @@ Deno.test("successfully logs in", async () => {
   });
   assertEquals(response.status, STATUS_CODE.OK);
   assert((await response.text()).includes("Logged in"));
+  const [sessionCookie] = getSetCookies(response.headers);
+  assert(sessionCookie);
+  assertEquals(sessionCookie.name, "session");
+  assertEquals(sessionCookie.value, "1");
 });