test: cookie test

test:v2
test: testing
2026-01-06 14:54:04 +01:00 · 2026-01-04 16:15:08 +01:00 · 2026-01-04 14:36:29 +01:00 · 2026-01-04 14:07:16 +01:00 · 2026-01-04 13:56:00 +01:00 · 2026-01-04 13:43:04 +01:00
11 changed files with 147 additions and 86 deletions
--- a/.env.default
+++ b/.env.default
@@ -1,7 +1,7 @@
-# Site info
-PUBLIC_URL=https://example.com # Publicly accessible website root, used for rewrites. Note there is no trailing slash in the URL.
-USE_SUBDOMAINS=true            # Whether backend allows for use of subdomains in URL generation.
+PUBLIC_URL=https://example.com
+USE_SUBDOMAINS=true
 DEBUG=false
+
 # Frontend specific
-<miejsce na twoje zmienne>
-VITE_API_TARGET=kitkat.example.com # Target backend for API requests.
+VITE_API_TARGET=https://pies.com
+VITE_ALLOWED_HOST=pies.com # for sub domens add . before host address
--- a/kittyurl-frontend/index.html
+++ b/kittyurl-frontend/index.html
@@ -13,7 +13,7 @@
    <meta name="twitter:card" content="summary_large_image" />
    <meta name="twitter:title" content="kittyurl shortener" />
    <meta name="twitter:description" content="Your go-to place for short and memorable URLs." />
-    <meta name="twitter:image" content="/src/assets/ket.png" />
+    <meta name="twitter:image" content="/src/assets/Ket.png" />


 </head>
--- a/kittyurl-frontend/package-lock.json
+++ b/kittyurl-frontend/package-lock.json
@@ -10,6 +10,7 @@
      "dependencies": {
        "@tailwindcss/vite": "^4.1.18",
        "axios": "^1.13.2",
+        "js-cookie": "^3.0.5",
        "js-sha512": "^0.9.0",
        "lucide-react": "^0.562.0",
        "react": "^19.2.0",
@@ -18,6 +19,7 @@
      },
      "devDependencies": {
        "@eslint/js": "^9.39.1",
+        "@types/js-cookie": "^3.0.6",
        "@types/node": "^24.10.1",
        "@types/react": "^19.2.5",
        "@types/react-dom": "^19.2.3",
@@ -1588,6 +1590,13 @@
      "integrity": "sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w==",
      "license": "MIT"
    },
+    "node_modules/@types/js-cookie": {
+      "version": "3.0.6",
+      "resolved": "https://registry.npmjs.org/@types/js-cookie/-/js-cookie-3.0.6.tgz",
+      "integrity": "sha512-wkw9yd1kEXOPnvEeEV1Go1MmxtBJL0RR79aOTAApecWFVu7w0NNXNqhcWgvw2YgZDYadliXkl14pa3WXw5jlCQ==",
+      "dev": true,
+      "license": "MIT"
+    },
    "node_modules/@types/json-schema": {
      "version": "7.0.15",
      "resolved": "https://registry.npmjs.org/@types/json-schema/-/json-schema-7.0.15.tgz",
@@ -3007,6 +3016,15 @@
        "jiti": "lib/jiti-cli.mjs"
      }
    },
+    "node_modules/js-cookie": {
+      "version": "3.0.5",
+      "resolved": "https://registry.npmjs.org/js-cookie/-/js-cookie-3.0.5.tgz",
+      "integrity": "sha512-cEiJEAEoIbWfCZYKWhVwFuvPX1gETRYPw6LlaTKoxD3s2AkXzkCjnp6h0V77ozyqj0jakteJ4YqDJT830+lVGw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=14"
+      }
+    },
    "node_modules/js-sha512": {
      "version": "0.9.0",
      "resolved": "https://registry.npmjs.org/js-sha512/-/js-sha512-0.9.0.tgz",
--- a/kittyurl-frontend/package.json
+++ b/kittyurl-frontend/package.json
@@ -13,6 +13,7 @@
  "dependencies": {
    "@tailwindcss/vite": "^4.1.18",
    "axios": "^1.13.2",
+    "js-cookie": "^3.0.5",
    "js-sha512": "^0.9.0",
    "lucide-react": "^0.562.0",
    "react": "^19.2.0",
@@ -21,6 +22,7 @@
  },
  "devDependencies": {
    "@eslint/js": "^9.39.1",
+    "@types/js-cookie": "^3.0.6",
    "@types/node": "^24.10.1",
    "@types/react": "^19.2.5",
    "@types/react-dom": "^19.2.3",
--- a/kittyurl-frontend/src/App.tsx
+++ b/kittyurl-frontend/src/App.tsx
@@ -7,19 +7,43 @@ import { KittyGame } from './components/KittyGame';
 import { FlappyCat } from './components/FlappyCat';
 import { useAuth } from './hooks/useAuth';

-// Eksportujemy typ, aby inne pliki mogły go użyć
 export type View = 'home' | 'login' | 'history' | 'jump-game' | 'flappy-game';

+const getSubdomain = () => {
+    const hostname = window.location.hostname;
+    const parts = hostname.split('.');
+    if (parts.length <= 2) return null;
+    return parts[0];
+};
+
 function App() {
    const [url, setUrl] = useState('');
    const [view, setView] = useState<View>('home');
    const { isAuthenticated, logout } = useAuth();
+    const subdomain = getSubdomain();
+
+    /**
+     * STAN POCHODNY (Derived State)
+     * Rozwiązuje błąd "cascading renders". Jeśli użytkownik jest na subdomenie
+     * i nie jest zalogowany, automatycznie renderujemy widok logowania,
+     * ale nie nadpisujemy stanu 'view' w nieskończoność.
+     */
+    const activeView = (subdomain && !isAuthenticated) ? 'login' : view;

    const renderView = () => {
-        switch (view) {
+        switch (activeView) {
            case 'login':
-                return <LoginView onBack={() => setView('home')} onSuccess={() => setView('home')} />;
+                return (
+                    <LoginView
+                        onBack={() => setView('home')}
+                        onSuccess={() => setView('home')}
+                    />
+                );
            case 'history':
+                // Strażnik dostępu dla widoku historii
+                if (!isAuthenticated) {
+                    return <LoginView onBack={() => setView('home')} onSuccess={() => setView('home')} />;
+                }
                return <HistoryView onBack={() => setView('home')} />;
            case 'jump-game':
                return <KittyGame onBack={() => setView('home')} />;
@@ -37,7 +61,12 @@ function App() {
                isAuthenticated={isAuthenticated}
                onLogout={logout}
            />
-            <main>{renderView()}</main>
+            <main>
+                {/* Jeśli użytkownik jest zalogowany (SSO), activeView od razu 
+                  pokaże Generator, zamiast LoginView.
+                */}
+                {renderView()}
+            </main>
        </div>
    );
 }
--- a/kittyurl-frontend/src/api/auth.ts
+++ b/kittyurl-frontend/src/api/auth.ts
@@ -1,25 +0,0 @@
-import axios from 'axios';
-import { sha512 } from 'js-sha512';
-
-// Interfejs zgodny z Twoją dokumentacją [cite: 74-79]
-export interface AuthResponse {
-  status: "ok";
-  name: string;
-  role: "user" | "admin";
-  token: string;
-}
-
-export const loginUser = async (name: string, pass: string): Promise<AuthResponse> => {
-  // Wysyłamy POST zgodnie ze specyfikacją dokumentacji [cite: 68]
-  const response = await axios.post('https://twoj-backend.pl/api/v1/user/signIn', {
-    name: name,
-    password: sha512(pass) // Wymagane SHA-512 [cite: 71]
-  });
-
-  // Jeśli sukces, zapisujemy token JWT [cite: 78]
-  if (response.data.status === "ok") {
-    localStorage.setItem('token', response.data.token);
-  }
-
-  return response.data;
-};
--- a/kittyurl-frontend/src/components/Generator.tsx
+++ b/kittyurl-frontend/src/components/Generator.tsx
@@ -15,7 +15,7 @@ export const Generator: React.FC<GeneratorProps> = ({ url, setUrl, onGenerate })
                KittyURL <PawPrint className="w-8 h-8 sm:w-12 sm:h-12" fill="currentColor" />
            </h1>
            <p className="text-pink-300 text-lg sm:text-xl font-medium px-4">
-                Shorten your links with a purr!
+                Shorten KKKKKK your links with a purr!
            </p>
        </header>

--- a/kittyurl-frontend/src/context/AuthProvider.tsx
+++ b/kittyurl-frontend/src/context/AuthProvider.tsx
@@ -1,38 +1,68 @@
-// src/context/AuthProvider.tsx
-import { useState, useCallback, type ReactNode } from 'react';
-import { AuthContext } from './AuthContext'; // Importujemy stałą z pliku obok
+import { useState, useCallback, type ReactNode } from 'react';
+import Cookies from 'js-cookie';
+import { AuthContext } from './AuthContext';
 import { sha512 } from '../utils/crypto';
-import type { AuthResponse } from '../types/auth';
+
+const TOKEN_KEY = 'ktty_shared_token';
+
+const getCookieConfig = () => {
+    const hostname = window.location.hostname;
+
+    // Sprawdzamy, czy jesteśmy na localhost
+    const isLocal = hostname === 'localhost' || hostname === '127.0.0.1';
+
+    // Sprawdzamy, czy połączenie jest bezpieczne (HTTPS)
+    const isSecure = window.location.protocol === 'https:';
+
+    return {
+        // Na produkcji używamy domeny nadrzędnej z kropką, by działało na subdomenach
+        // Na localhost MUSI być undefined, inaczej przeglądarka odrzuci ciasteczko
+        domain: isLocal ? undefined : '.ktty.is',
+
+        // Atrybut Secure wymaga HTTPS. Na localhost wyłączamy, na produkcji włączamy.
+        secure: isSecure,
+
+        // 'Lax' jest bezpieczne i pozwala na współdzielenie w obrębie subdomen.
+        // Jeśli API jest na zupełnie innej domenie, rozważ 'None' (wymaga Secure: true).
+        sameSite: 'Lax' as const,
+
+        path: '/',
+        expires: 7
+    };
+};

 export function AuthProvider({ children }: { children: ReactNode }) {
-    const [token, setToken] = useState<string | null>(sessionStorage.getItem('ktty_token'));
+    const [token, setToken] = useState<string | null>(() => Cookies.get(TOKEN_KEY) || null);
    const [loading, setLoading] = useState(false);
-    const [error, setError] = useState<string | null>(null);
+    const [error, setError] = useState<string | null>(null); // DODANE

-    const authRequest = useCallback(async (endpoint: 'signUp' | 'signIn', name: string, pass: string) => {
+    const authRequest = useCallback(async (endpoint: 'signIn' | 'signUp', name: string, pass: string) => {
        setLoading(true);
        setError(null);
+
        try {
            const hashedPassword = await sha512(pass);
            const response = await fetch(`/api/v1/user/${endpoint}`, {
                method: 'POST',
-                headers: {
-                    'accept': 'application/json',
-                    'Content-Type': 'application/json',
-                },
-                body: JSON.stringify({ name, password: hashedPassword, ttl: 86400 }),
+                headers: { 'Content-Type': 'application/json' },
+                credentials: 'include',
+                body: JSON.stringify({ name, password: hashedPassword }),
            });

-            const data: AuthResponse = await response.json();
-            if (!response.ok) throw new Error(data.error || data.message || `Error ${response.status}`);
+            const data = await response.json();

-            if (data.token) {
-                sessionStorage.setItem('ktty_token', data.token);
-                setToken(data.token); // To aktualizuje stan w całej aplikacji natychmiast!
+            if (!response.ok) {
+                throw new Error(data?.message || 'Błąd autoryzacji');
+            }
+
+            if (data?.token) {
+                Cookies.set(TOKEN_KEY, data.token, getCookieConfig());
+                setToken(data.token);
            }
            return data;
        } catch (err: unknown) {
-            setError(err instanceof Error ? err.message : 'Unknown error');
+            const msg = err instanceof Error ? err.message : 'Wystąpił błąd';
+            setError(msg);
            return null;
        } finally {
            setLoading(false);
@@ -40,7 +70,9 @@ export function AuthProvider({ children }: { children: ReactNode }) {
    }, []);

    const logout = useCallback(() => {
-        sessionStorage.removeItem('ktty_token');
+        const config = getCookieConfig();
+        // When removing, you must match the domain and path used when setting
+        Cookies.remove(TOKEN_KEY, { domain: config.domain, path: config.path });
        setToken(null);
    }, []);

@@ -49,9 +81,9 @@ export function AuthProvider({ children }: { children: ReactNode }) {
            isAuthenticated: !!token,
            token,
            loading,
-            error,
+            error, 
            signIn: (n, p) => authRequest('signIn', n, p),
-            signUp: (n, p) => authRequest('signUp', n, p),
+            signUp: (n, p) => authRequest('signUp', n, p), 
            logout
        }}>
            {children}
--- a/kittyurl-frontend/tsconfig.app.json
+++ b/kittyurl-frontend/tsconfig.app.json
@@ -1,4 +1,4 @@
-{
+{
  "compilerOptions": {
    "tsBuildInfoFile": "./node_modules/.tmp/tsconfig.app.tsbuildinfo",
    "target": "ES2022",
--- a/kittyurl-frontend/tsconfig.json
+++ b/kittyurl-frontend/tsconfig.json
@@ -1,7 +1,8 @@
-{
+{
  "files": [],
  "references": [
    { "path": "./tsconfig.app.json" },
    { "path": "./tsconfig.node.json" }
+
  ]
 }
--- a/kittyurl-frontend/vite.config.ts
+++ b/kittyurl-frontend/vite.config.ts
@@ -1,50 +1,54 @@
-import { defineConfig, loadEnv } from 'vite'
+import { defineConfig, loadEnv, type PluginOption } from 'vite'
 import react from '@vitejs/plugin-react'
 import tailwindcss from '@tailwindcss/vite'
-import path from 'path' // Importuj moduł path
+import path from 'path'
+import { fileURLToPath } from 'url'
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);

 export default defineConfig(({ mode }) => {
-    // Ustawiamy ścieżkę do folderu, w którym faktycznie znajduje się plik .env
-    // path.resolve(__dirname, '..') oznacza: "wyjdź jeden poziom wyżej względem tego pliku"
    const envDirectory = path.resolve(__dirname, '..');
-
-    // Ładujemy env z określonej lokalizacji
    const env = loadEnv(mode, envDirectory, '');

-    const apiTarget = env.VITE_API_TARGET;
+    const backendTarget = env.VITE_API_TARGET;

    return {
+        envDir: envDirectory,
        plugins: [
-            react(),
-            tailwindcss(),
+            react() as PluginOption,
+            tailwindcss() as PluginOption,
        ],
        server: {
            port: 6568,
+            host: true, // Pozwala na dostęp przez IP w sieci lokalnej
+            // Jeśli testujesz subdomeny lokalnie (np. app.local.ktty.is), dodaj to:
+            allowedHosts: [
+                '.ktty.is',
+                'localhost',
+                '127.0.0.1',
+
+            ],
+            // vite.config.ts
            proxy: {
                '/api': {
-                    target: apiTarget,
+                    target: backendTarget,
                    changeOrigin: true,
                    secure: false,
-                    headers: {
-                        'Origin': apiTarget,
-                        'Referer': `${apiTarget}/`
-                    },
-                    configure: (proxy) => {
-                        proxy.on('error', (err) => {
-                            console.log('[Proxy Error]:', err.message);
-                        });
-                        proxy.on('proxyReq', (_, req) => {
-                            console.log(`[Proxy] Wysyłam do: ${apiTarget}${req.url}`);
-                        });
-                        proxy.on('proxyRes', (proxyRes, req) => {
-                            console.log(`[Proxy] Odpowiedź: ${proxyRes.statusCode} ${req.url}`);
-                        });
-                    },
-                }
-            }
+                    cookieDomainRewrite: {
+                        "*": ""
+                    },                    
+                },
+            },
        },
        preview: {
            port: 6568,
+            allowedHosts: true,
+        },
+        resolve: {
+            alias: {
+                '@': path.resolve(__dirname, './src'),
+            },
        },
    }
 })
Author	SHA1	Message	Date
Pc	ad76294d73	test: cookie test All checks were successful Update changelog / changelog (push) Successful in 27s Details	2026-01-06 14:54:04 +01:00
Pc	5dd751600c	test:v2 All checks were successful Update changelog / changelog (push) Successful in 28s Details	2026-01-04 16:15:08 +01:00
Pc	13909c46f6	test: testing All checks were successful Update changelog / changelog (push) Successful in 28s Details	2026-01-04 14:36:29 +01:00
Pc	3c1d66ba48	fix: subdomain fix All checks were successful Update changelog / changelog (push) Successful in 31s Details	2026-01-04 14:07:16 +01:00
Pc	c765c92f89	feat: added cookies to use subdomains All checks were successful Update changelog / changelog (push) Successful in 27s Details	2026-01-04 13:56:00 +01:00
Pc	dae3479680	fix: not adding subdomain address to fetch api All checks were successful Update changelog / changelog (push) Successful in 28s Details	2026-01-04 13:43:04 +01:00
Pc	549da339e4	fix: login in works in subdomain All checks were successful Update changelog / changelog (push) Successful in 28s Details	2026-01-04 13:33:15 +01:00
Pc	4fa55b4caf	test: subdomaind api All checks were successful Update changelog / changelog (push) Successful in 26s Details	2026-01-03 19:00:48 +01:00
Pc	fc0ee5a4d6	fix: typo fix All checks were successful Update changelog / changelog (push) Successful in 26s Details	2026-01-03 18:43:12 +01:00
Pc	1d1379c776	feat: domain redirection All checks were successful Update changelog / changelog (push) Successful in 35s Details	2026-01-03 18:31:52 +01:00
Pc	95f449a3d2	fix: vite config allowedhost read from .env All checks were successful Update changelog / changelog (push) Successful in 26s Details	2026-01-03 15:54:50 +01:00
Pc	ceeb2cccaf	fix: typo fix All checks were successful Update changelog / changelog (push) Successful in 26s Details	2025-12-31 18:13:16 +01:00
Nom4ne	c85aa78a76	Merge pull request 'fix: typo fix in image path' (#5 ) from RWD into master All checks were successful Update changelog / changelog (push) Successful in 26s Details Reviewed-on: #5	2025-12-31 17:58:57 +01:00
Nom4ne	1822a46e9f	Merge pull request 'feat: opengraph icons' (#4 ) from RWD into master All checks were successful Update changelog / changelog (push) Successful in 26s Details Reviewed-on: #4	2025-12-31 17:44:29 +01:00
Nom4ne	0e2633b331	Merge pull request 'feat: responsive desing' (#3 ) from RWD into master All checks were successful Update changelog / changelog (push) Successful in 25s Details Reviewed-on: #3	2025-12-31 16:28:27 +01:00