fix: convert auth flows from SSE to standard HTTP to fix session cookies #14

Merged

ryan merged 1 commits from fix/login-session-cookie into main

2026-03-11 20:14:35 +00:00

Author	SHA1	Message	Date
Ryan Hamamura	72d31fd143	fix: convert auth flows from SSE to standard HTTP to fix session cookies Some checks failed CI / Deploy / test (pull_request) Successful in 33s Details CI / Deploy / lint (pull_request) Failing after 38s Details CI / Deploy / deploy (pull_request) Has been skipped Details Datastar's NewSSE() flushes HTTP headers before SCS's session middleware can attach the Set-Cookie header, so the session cookie never reaches the browser after login/register/logout. Convert login, register, and logout to standard HTML forms with HTTP redirects, which lets SCS write cookies normally. Also fix return_url capture on the login page (was never being stored in the session). Add handler tests covering login, register, and logout flows.	2026-03-11 10:10:28 -10:00

Author

SHA1

Message

Date

Ryan Hamamura

72d31fd143

fix: convert auth flows from SSE to standard HTTP to fix session cookies

CI / Deploy / test (pull_request) Successful in 33s

Details

CI / Deploy / lint (pull_request) Failing after 38s

Details

CI / Deploy / deploy (pull_request) Has been skipped

Details

Datastar's NewSSE() flushes HTTP headers before SCS's session middleware
can attach the Set-Cookie header, so the session cookie never reaches the
browser after login/register/logout.

Convert login, register, and logout to standard HTML forms with HTTP
redirects, which lets SCS write cookies normally. Also fix return_url
capture on the login page (was never being stored in the session).

Add handler tests covering login, register, and logout flows.

2026-03-11 10:10:28 -10:00

fix: convert auth flows from SSE to standard HTTP to fix session cookies #14

1 Commits