feat: add support for all cookie options

The "cookie" options can now be an object, which will be forwarded to the "cookie" module. The previous syntax is still valid: ``` new Server({ cookieName: "test", cookieHttpOnly: false, cookiePath: "/custom" }) ``` but the new syntax add support for all options: ``` new Server({ cookie: { name: "test", httpOnly: false, path: "/custom" sameSite: "lax" } }) ``` Reference: https://github.com/jshttp/cookie#options-1 Backported from master: a374471
socketio · Dec 30, 2020 · 19cc582 · 19cc582
1 parent 5ad2736
commit 19cc582
Show file tree

Hide file tree

Showing 4 changed files with 33 additions and 10 deletions.
diff --git a/lib/server.js b/lib/server.js
@@ -316,12 +316,16 @@ Server.prototype.handshake = function (transportName, req) {
 
   if (false !== this.cookie) {
     transport.on('headers', function (headers) {
-      headers['Set-Cookie'] = cookieMod.serialize(self.cookie, id,
-        {
-          path: self.cookiePath,
-          httpOnly: self.cookiePath ? self.cookieHttpOnly : false,
-          sameSite: true
-        });
+      if (typeof self.cookie === 'object') {
+        headers['Set-Cookie'] = cookieMod.serialize(self.cookie.name, id, self.cookie);
+      } else {
+        headers['Set-Cookie'] = cookieMod.serialize(self.cookie, id,
+          {
+            path: self.cookiePath,
+            httpOnly: self.cookiePath ? self.cookieHttpOnly : false,
+            sameSite: true
+          });
+      }
     });
   }
 

diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -27,7 +27,7 @@
   "dependencies": {
     "accepts": "~1.3.4",
     "base64id": "2.0.0",
-    "cookie": "0.3.1",
+    "cookie": "~0.4.1",
     "debug": "~4.1.0",
     "engine.io-parser": "~2.2.0",
     "ws": "~7.4.2"

diff --git a/test/server.js b/test/server.js
@@ -123,6 +123,25 @@ describe('server', function () {
       });
     });
 
+    it('should forward all cookie options', function (done) {
+      listen({ cookie: {
+        name: 'woot',
+        path: '/test',
+        httpOnly: true,
+        sameSite: 'lax'
+      }}, function (port) {
+        request.get('http://localhost:%d/engine.io/default/'.s(port))
+          .query({ transport: 'polling', b64: 1 })
+          .end(function (err, res) {
+            expect(err).to.be(null);
+            // hack-obtain sid
+            var sid = res.text.match(/"sid":"([^"]+)"/)[1];
+            expect(res.headers['set-cookie'][0]).to.be('woot=' + sid + '; Path=/test; HttpOnly; SameSite=Lax');
+            done();
+          });
+      });
+    });
+
     it('should send the io cookie custom name', function (done) {
       listen({ cookie: 'woot' }, function (port) {
         request.get('http://localhost:%d/engine.io/default/'.s(port))