Forgejo/modules/context/context_cookie.go

// Copyright 2023 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package context

import (
	"net/http"
	"strings"

	auth_model "code.gitea.io/gitea/models/auth"
	user_model "code.gitea.io/gitea/models/user"
	"code.gitea.io/gitea/modules/setting"
	"code.gitea.io/gitea/modules/timeutil"
	"code.gitea.io/gitea/modules/web/middleware"
)

const CookieNameFlash = "gitea_flash"

func removeSessionCookieHeader(w http.ResponseWriter) {
	cookies := w.Header()["Set-Cookie"]
	w.Header().Del("Set-Cookie")
	for _, cookie := range cookies {
		if strings.HasPrefix(cookie, setting.SessionConfig.CookieName+"=") {
			continue
		}
		w.Header().Add("Set-Cookie", cookie)
	}
}

// SetSiteCookie convenience function to set most cookies consistently
// CSRF and a few others are the exception here
func (ctx *Context) SetSiteCookie(name, value string, maxAge int) {
	middleware.SetSiteCookie(ctx.Resp, name, value, maxAge)
}

// DeleteSiteCookie convenience function to delete most cookies consistently
// CSRF and a few others are the exception here
func (ctx *Context) DeleteSiteCookie(name string) {
	middleware.SetSiteCookie(ctx.Resp, name, "", -1)
}

// GetSiteCookie returns given cookie value from request header.
func (ctx *Context) GetSiteCookie(name string) string {
	return middleware.GetSiteCookie(ctx.Req, name)
}

// SetLTACookie will generate a LTA token and add it as an cookie.
func (ctx *Context) SetLTACookie(u *user_model.User) error {
	days := 86400 * setting.LogInRememberDays
	lookup, validator, err := auth_model.GenerateAuthToken(ctx, u.ID, timeutil.TimeStampNow().Add(int64(days)))
	if err != nil {
		return err
	}
	ctx.SetSiteCookie(setting.CookieRememberName, lookup+":"+validator, days)
	return nil
}
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`// Copyright 2023 The Gitea Authors. All rights reserved.`
			`// SPDX-License-Identifier: MIT`

			`package context`

			`import (`
			`"net/http"`
			`"strings"`

[GITEA] rework long-term authentication - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b1ebd2a280fcdd55d10b1f6081e9ccd) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c1c59b4d2e7787d6a6c602d725da403) (cherry picked from commit 99d06e344ebc3b50bafb2ac4473dd95f057d1ddc) (cherry picked from commit d8bc98a8f021d381bf72790ad246f923ac983ad4) (cherry picked from commit 6404845df9a63802fff4c5bd6cfe1e390076e7f0) (cherry picked from commit 72bdd4f3b9f6509d1ff3f10ecb12c621a932ed30) (cherry picked from commit 4b01bb0ce812b6c59414ff53fed728563d8bc9cc) (cherry picked from commit c26ac318162b2cad6ff1ae54e2d8f47a4e4fe7c2) (cherry picked from commit 8d2dab94a65d7ff5c88721c62f5996b8e2634b1e) Conflicts: routers/web/auth/auth.go https://codeberg.org/forgejo/forgejo/issues/2158 2023-06-03 15:21:40 +02:00			`auth_model "code.gitea.io/gitea/models/auth"`
			`user_model "code.gitea.io/gitea/models/user"`
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`"code.gitea.io/gitea/modules/setting"`
[GITEA] rework long-term authentication - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b1ebd2a280fcdd55d10b1f6081e9ccd) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c1c59b4d2e7787d6a6c602d725da403) (cherry picked from commit 99d06e344ebc3b50bafb2ac4473dd95f057d1ddc) (cherry picked from commit d8bc98a8f021d381bf72790ad246f923ac983ad4) (cherry picked from commit 6404845df9a63802fff4c5bd6cfe1e390076e7f0) (cherry picked from commit 72bdd4f3b9f6509d1ff3f10ecb12c621a932ed30) (cherry picked from commit 4b01bb0ce812b6c59414ff53fed728563d8bc9cc) (cherry picked from commit c26ac318162b2cad6ff1ae54e2d8f47a4e4fe7c2) (cherry picked from commit 8d2dab94a65d7ff5c88721c62f5996b8e2634b1e) Conflicts: routers/web/auth/auth.go https://codeberg.org/forgejo/forgejo/issues/2158 2023-06-03 15:21:40 +02:00			`"code.gitea.io/gitea/modules/timeutil"`
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`"code.gitea.io/gitea/modules/web/middleware"`
			`)`

			`const CookieNameFlash = "gitea_flash"`

			`func removeSessionCookieHeader(w http.ResponseWriter) {`
			`cookies := w.Header()["Set-Cookie"]`
			`w.Header().Del("Set-Cookie")`
			`for _, cookie := range cookies {`
			`if strings.HasPrefix(cookie, setting.SessionConfig.CookieName+"=") {`
			`continue`
			`}`
			`w.Header().Add("Set-Cookie", cookie)`
			`}`
			`}`

			`// SetSiteCookie convenience function to set most cookies consistently`
			`// CSRF and a few others are the exception here`
			`func (ctx *Context) SetSiteCookie(name, value string, maxAge int) {`
			`middleware.SetSiteCookie(ctx.Resp, name, value, maxAge)`
			`}`

			`// DeleteSiteCookie convenience function to delete most cookies consistently`
			`// CSRF and a few others are the exception here`
			`func (ctx *Context) DeleteSiteCookie(name string) {`
			`middleware.SetSiteCookie(ctx.Resp, name, "", -1)`
			`}`

			`// GetSiteCookie returns given cookie value from request header.`
			`func (ctx *Context) GetSiteCookie(name string) string {`
			`return middleware.GetSiteCookie(ctx.Req, name)`
			`}`

[GITEA] rework long-term authentication - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b1ebd2a280fcdd55d10b1f6081e9ccd) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c1c59b4d2e7787d6a6c602d725da403) (cherry picked from commit 99d06e344ebc3b50bafb2ac4473dd95f057d1ddc) (cherry picked from commit d8bc98a8f021d381bf72790ad246f923ac983ad4) (cherry picked from commit 6404845df9a63802fff4c5bd6cfe1e390076e7f0) (cherry picked from commit 72bdd4f3b9f6509d1ff3f10ecb12c621a932ed30) (cherry picked from commit 4b01bb0ce812b6c59414ff53fed728563d8bc9cc) (cherry picked from commit c26ac318162b2cad6ff1ae54e2d8f47a4e4fe7c2) (cherry picked from commit 8d2dab94a65d7ff5c88721c62f5996b8e2634b1e) Conflicts: routers/web/auth/auth.go https://codeberg.org/forgejo/forgejo/issues/2158 2023-06-03 15:21:40 +02:00			`// SetLTACookie will generate a LTA token and add it as an cookie.`
			`func (ctx Context) SetLTACookie(u user_model.User) error {`
			`days := 86400 * setting.LogInRememberDays`
			`lookup, validator, err := auth_model.GenerateAuthToken(ctx, u.ID, timeutil.TimeStampNow().Add(int64(days)))`
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`if err != nil {`
[GITEA] rework long-term authentication - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b1ebd2a280fcdd55d10b1f6081e9ccd) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c1c59b4d2e7787d6a6c602d725da403) (cherry picked from commit 99d06e344ebc3b50bafb2ac4473dd95f057d1ddc) (cherry picked from commit d8bc98a8f021d381bf72790ad246f923ac983ad4) (cherry picked from commit 6404845df9a63802fff4c5bd6cfe1e390076e7f0) (cherry picked from commit 72bdd4f3b9f6509d1ff3f10ecb12c621a932ed30) (cherry picked from commit 4b01bb0ce812b6c59414ff53fed728563d8bc9cc) (cherry picked from commit c26ac318162b2cad6ff1ae54e2d8f47a4e4fe7c2) (cherry picked from commit 8d2dab94a65d7ff5c88721c62f5996b8e2634b1e) Conflicts: routers/web/auth/auth.go https://codeberg.org/forgejo/forgejo/issues/2158 2023-06-03 15:21:40 +02:00			`return err`
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`}`
[GITEA] rework long-term authentication - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b1ebd2a280fcdd55d10b1f6081e9ccd) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c1c59b4d2e7787d6a6c602d725da403) (cherry picked from commit 99d06e344ebc3b50bafb2ac4473dd95f057d1ddc) (cherry picked from commit d8bc98a8f021d381bf72790ad246f923ac983ad4) (cherry picked from commit 6404845df9a63802fff4c5bd6cfe1e390076e7f0) (cherry picked from commit 72bdd4f3b9f6509d1ff3f10ecb12c621a932ed30) (cherry picked from commit 4b01bb0ce812b6c59414ff53fed728563d8bc9cc) (cherry picked from commit c26ac318162b2cad6ff1ae54e2d8f47a4e4fe7c2) (cherry picked from commit 8d2dab94a65d7ff5c88721c62f5996b8e2634b1e) Conflicts: routers/web/auth/auth.go https://codeberg.org/forgejo/forgejo/issues/2158 2023-06-03 15:21:40 +02:00			`ctx.SetSiteCookie(setting.CookieRememberName, lookup+":"+validator, days)`
			`return nil`
Split "modules/context.go" to separate files (#24569) The "modules/context.go" is too large to maintain. This PR splits it to separate files, eg: context_request.go, context_response.go, context_serve.go This PR will help: 1. The future refactoring for Gitea's web context (eg: simplify the context) 2. Introduce proper "range request" support 3. Introduce context function This PR only moves code, doesn't change any logic. 2023-05-08 11:36:54 +02:00			`}`