kodlamaio-projects · furkanaltaca · Mar 3, 2024 · Mar 3, 2024
diff --git a/src/starterProject/WebAPI/Controllers/AuthController.cs b/src/starterProject/WebAPI/Controllers/AuthController.cs
@@ -116,7 +116,14 @@ private string getRefreshTokenFromCookies()
 
     private void setRefreshTokenToCookie(RefreshToken refreshToken)
     {
-        CookieOptions cookieOptions = new() { HttpOnly = true, Expires = DateTime.UtcNow.AddDays(7) };
+        CookieOptions cookieOptions =
+            new()
+            {
+                HttpOnly = true,
+                Secure = true,
+                SameSite = SameSiteMode.None,
+                Expires = DateTime.UtcNow.AddDays(7)
+            };
         Response.Cookies.Append(key: "refreshToken", refreshToken.Token, cookieOptions);
     }
 }
diff --git a/tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs b/tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs
    {
        _loginCommand.UserForLoginDto = new() { Email = "example@kodlama.io", Password = "123456" };
        LoggedResponse result = await _loginCommandHandler.Handle(_loginCommand, CancellationToken.None);
        Assert.NotNull(result.AccessToken.Token);
    }

    [Fact]
        LoggedResponse result = await _loginCommandHandler.Handle(_loginCommand, CancellationToken.None);
        TokenOptions? tokenOptions = _configuration.GetSection("TokenOptions").Get<TokenOptions>();
        bool tokenExpiresInTime =
            DateTime.Now.AddMinutes(tokenOptions.AccessTokenExpiration + 1) > result.AccessToken.ExpirationDate;
        Assert.True(tokenExpiresInTime, "Access token expiration time is invalid.");
    }
	{
	_loginCommand.UserForLoginDto = new() { Email = "example@kodlama.io", Password = "123456" };
	LoggedResponse result = await _loginCommandHandler.Handle(_loginCommand, CancellationToken.None);
	Assert.NotNull(result.AccessToken.Token);
Check warning on line 94 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.` Check warning on line 94 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.`
	}

	[Fact]
	LoggedResponse result = await _loginCommandHandler.Handle(_loginCommand, CancellationToken.None);
	TokenOptions? tokenOptions = _configuration.GetSection("TokenOptions").Get<TokenOptions>();
	bool tokenExpiresInTime =
	DateTime.Now.AddMinutes(tokenOptions.AccessTokenExpiration + 1) > result.AccessToken.ExpirationDate;
Check warning on line 104 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.` Check warning on line 104 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.` Check warning on line 104 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.` Check warning on line 104 in tests/StarterProject.Application.Tests/Features/Auth/Commands/Login/LoginTests.cs GitHub Actions / build `Dereference of a possibly null reference.`
	Assert.True(tokenExpiresInTime, "Access token expiration time is invalid.");
	}