refactor: switch to HttpOnly cookie (#660)

* Switch to httpOnly cookie * create endpoint to retrieve temporary collaboration token * cleanups
2025-11-10 07:32:05 +10:00 · 2025-01-22 22:11:11 +00:00
parent f2235fd2a2
commit 990612793f
29 changed files with 240 additions and 276 deletions
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@ -148,6 +148,9 @@ importers:
      cross-env:
        specifier: ^7.0.3
        version: 7.0.3
+      date-fns:
+        specifier: ^4.1.0
+        version: 4.1.0
      dompurify:
        specifier: ^3.2.1
        version: 3.2.1
@ -245,9 +248,6 @@ importers:
      clsx:
        specifier: ^2.1.1
        version: 2.1.1
-      date-fns:
-        specifier: ^4.1.0
-        version: 4.1.0
      emoji-mart:
        specifier: ^5.6.0
        version: 5.6.0
@ -269,9 +269,6 @@ importers:
      js-cookie:
        specifier: ^3.0.5
        version: 3.0.5
-      jwt-decode:
-        specifier: ^4.0.0
-        version: 4.0.0
      katex:
        specifier: 0.16.21
        version: 0.16.21
@ -465,6 +462,9 @@ importers:
      class-validator:
        specifier: ^0.14.1
        version: 0.14.1
+      cookie:
+        specifier: ^1.0.2
+        version: 1.0.2
      fix-esm:
        specifier: ^1.0.1
        version: 1.0.1
@ -6352,10 +6352,6 @@ packages:
  jws@3.2.2:
    resolution: {integrity: sha512-YHlZCB6lMTllWDtSPHz/ZXTsi8S00usEV6v1tjq8tOUZzw7DpSDWVXjXDre6ed1w/pd495ODpHZYSdkRTsa0HA==}

-  jwt-decode@4.0.0:
-    resolution: {integrity: sha512-+KJGIyHgkGuIq3IEBNftfhW/LfWhXUIY6OmyVWjliu5KH1y0fw7VQ8YndE2O4qZdMSd9SqbnC8GOcZEy0Om7sA==}
-    engines: {node: '>=18'}
-
  katex@0.16.21:
    resolution: {integrity: sha512-XvqR7FgOHtWupfMiigNzmh+MgUVmDGU2kXZm899ZkPfcuoPuFxyHmXsgATDpFZDAXCI8tvinaVcDo8PIIJSo4A==}
    hasBin: true
@ -15855,8 +15851,6 @@ snapshots:
      jwa: 1.4.1
      safe-buffer: 5.2.1

-  jwt-decode@4.0.0: {}
-
  katex@0.16.21:
    dependencies:
      commander: 8.3.0