11344923685
87%
master: 91%

Ran 15 Oct 2024 11:21AM UTC

Jobs 1

Files 680

Run time 1min

Badge

Embed ▾

Committed 15 Oct 2024 11:16AM UTC coverage: 87.627% (+0.05%) from 87.577%

Build # 11344923685

Build Type

push

github

Committed by

web-flow

Commit Message

fix: same site api call with session cookie (#8435)

## About the changes
This fixes #8029. How to reproduce the issue is in the ticket.

The issue happens because when a web app is hosted in the same domain as
Unleash UI and the web app uses unleash SDK to make requests to Unleash,
the browser automatically includes the cookie in the request headers,
because:

- The request URL matches the cookie's Path attribute (which it does in
this case).
- The request is sent to the same domain (which it is, since both apps
are under the same domain).

And this is by design in the HTTP cookie specification:
https://datatracker.ietf.org/doc/html/rfc6265

This PR avoids overriding the API user with the session user if there's
already an API user in the request. It's an alternative to
https://github.com/Unleash/unleash/pull/8434

Closes #8029

Coverage Stats

2753 of 3586 branches covered (76.77%)

1 of 1 new or added line in 1 file covered. (100.0%)

13966 of 15938 relevant lines covered (87.63%)

714.8 hits per line

Jobs

ID	Job ID	Ran	Files	Coverage
1	11344923685.1	15 Oct 2024 11:21AM UTC	0	87.63	GitHub Action Run

Source Files on build 11344923685

Detailed source file information is not available for this build.

Unleash / unleash / 11344923685
87%
master: 91%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 11344923685

Unleash / unleash / 11344923685 87% master: 91%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 11344923685

Unleash / unleash / 11344923685
87%
master: 91%

README BADGES
x