ChrisChen/ROLAC
1
0
Fork 0
Code Issues 66 Pull Requests Actions Packages Projects Releases Wiki Activity
13 Commits 2 Branches 0 Tags
2aa095c158c601617ba03fc9d0f23fa3c0d91c8c
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Chris Chen 2aa095c158 Task 11: Smoke test fixes (all 5 scenarios pass) 
TokenService.GenerateRefreshToken():
  - Switched to URL-safe Base64 (RFC 4648 §5): +→-, /→_, no = padding.
  - Characters are unreserved per RFC 6265, so Response.Cookies.Append
    does NOT percent-encode the value.  Request.Cookies reads back exact value.

AuthController:
  - CookieOptions.Secure = !env.IsDevelopment()
    Plain HTTP in local dev works; HTTPS-only in staging/production.
  - Inject IWebHostEnvironment for environment-aware Secure flag.

TokenServiceTests:
  - Updated GenerateRefreshToken test: 86-char URL-safe Base64 instead
    of 64-byte standard Base64.  16/16 tests pass.

Smoke test results (http://localhost:5209):
  1. POST /api/auth/login       → 200 + rolac_rt cookie + JWT
  2. POST /api/auth/refresh     → 200 + new token (rotation)
  3. POST /api/auth/logout      → 204 + cookie cleared
  4. Refresh with revoked token → 401
  5. Wrong password             → 401

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-26 19:28:20 -07:00
API
Task 11: Smoke test fixes (all 5 scenarios pass)
2026-05-26 19:28:20 -07:00
APP
WIP
2026-05-25 17:32:18 -07:00
docs
docs: add Login API implementation plan (JWT + ASP.NET Identity)
2026-05-25 18:57:18 -07:00
.gitignore
Initial commit: monorepo scaffold for ROLAC
2026-05-24 20:54:10 -07:00
S
Description
No description provided
2.5 MiB
Languages
C# 43.4%
TypeScript 35.1%
HTML 14%
SCSS 6.5%
PLpgSQL 0.6%
Other 0.2%