Skip to content

Commit

Permalink
fix(cookies): retrieve cookies when using a custom android scheme
Browse files Browse the repository at this point in the history
  • Loading branch information
ItsChaceD authored Sep 21, 2023
1 parent 1ffa244 commit 6b5ddad
Show file tree
Hide file tree
Showing 2 changed files with 48 additions and 25 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -39,41 +39,56 @@ public boolean isEnabled() {
return pluginConfig.getBoolean("enabled", false);
}

private boolean isAllowingInsecureCookies() {
PluginConfig pluginConfig = getBridge().getConfig().getPluginConfiguration("CapacitorCookies");
return pluginConfig.getBoolean("androidCustomSchemeAllowInsecureAccess", false);
}

@JavascriptInterface
public void setCookie(String domain, String action) {
cookieManager.setCookie(domain, action);
}

@PluginMethod
public void getCookies(PluginCall call) {
this.bridge.eval(
"document.cookie",
value -> {
String cookies = value.substring(1, value.length() - 1);
String[] cookieArray = cookies.split(";");

JSObject cookieMap = new JSObject();

for (String cookie : cookieArray) {
if (cookie.length() > 0) {
String[] keyValue = cookie.split("=", 2);

if (keyValue.length == 2) {
String key = keyValue[0].trim();
String val = keyValue[1].trim();
try {
key = URLDecoder.decode(keyValue[0].trim(), StandardCharsets.UTF_8.name());
val = URLDecoder.decode(keyValue[1].trim(), StandardCharsets.UTF_8.name());
} catch (UnsupportedEncodingException ignored) {}

cookieMap.put(key, val);
if (isAllowingInsecureCookies()) {
String url = call.getString("url");
JSObject cookiesMap = new JSObject();
HttpCookie[] cookies = cookieManager.getCookies(url);
for (HttpCookie cookie : cookies) {
cookiesMap.put(cookie.getName(), cookie.getValue());
}
call.resolve(cookiesMap);
} else {
this.bridge.eval(
"document.cookie",
value -> {
String cookies = value.substring(1, value.length() - 1);
String[] cookieArray = cookies.split(";");

JSObject cookieMap = new JSObject();

for (String cookie : cookieArray) {
if (cookie.length() > 0) {
String[] keyValue = cookie.split("=", 2);

if (keyValue.length == 2) {
String key = keyValue[0].trim();
String val = keyValue[1].trim();
try {
key = URLDecoder.decode(keyValue[0].trim(), StandardCharsets.UTF_8.name());
val = URLDecoder.decode(keyValue[1].trim(), StandardCharsets.UTF_8.name());
} catch (UnsupportedEncodingException ignored) {}

cookieMap.put(key, val);
}
}
}
}

call.resolve(cookieMap);
}
);
call.resolve(cookieMap);
}
);
}
}

@PluginMethod
Expand Down
8 changes: 8 additions & 0 deletions cli/src/declarations.ts
Original file line number Diff line number Diff line change
Expand Up @@ -636,6 +636,14 @@ export interface PluginsConfig {
* @default false
*/
enabled?: boolean;
/**
* Enable `httpOnly` and other insecure cookies to be read and accessed on Android.
*
* Note: This can potentially be a security risk and is only intended to be used
* when your application uses a custom scheme on Android.
*
*/
androidCustomSchemeAllowInsecureAccess?: boolean;
};

/**
Expand Down

0 comments on commit 6b5ddad

Please # to comment.