fix(authentication): make cookie name unique between environments

[subotic]

Resolves DEV-994

PR Checklist

Please check if your PR fulfills the following requirements:

• Tests for the changes have been added (for bug fixes / features)
• Docs have been added / updated (for bug fixes / features)

PR Type

What kind of change does this PR introduce?

• Bugfix
• Feature
• Code style update (formatting, local variables)
• Refactoring (no functional changes, no api changes)
• Build related changes
• CI related changes
• Documentation content changes
• Other... Please describe:

What is the current behavior?

Issue Number: DEV-994

What is the new behavior?

Does this PR introduce a breaking change?

• Yes
• No

Other information

[BalduinLandolt]

LGTM

[BalduinLandolt]

just out of curiosity: what's the deal with this padMap?

[subotic]

the standard padding is = which is not allowed because then the header is going to be something like KnoraAuthenticationDFJSKLFJDSLJ===JWT. No additional equal signs are allowed. This is why I changed it to 9 which is not used as part of the alphabet in the algorithm.

[BalduinLandolt]

is there an unhappy path that you could test? (if you made a copy of the settings where the .externalKnoraApiHostPort is an empty string or an invalid value, you'd expect a certain error, right?)

[subotic]

no, the code expects this to be a valid thing. If this is not valid, then the whole API would not work. This would be something to test in the config or something for a valueobject.

[irinaschubert]

LGTM

[mpro7]

I found just cosmetic things, apart of that looks good. You keep forgetting to organize the imports ;) We can maybe think how to automate it, but last time I've checked there was nothing interesting to have it done on saving the file.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
7 Code Smells

No Coverage information
0.8% Duplication