Merge branch '1.6.x' into chore-bump-console-5.2.25

2026-05-21 16:08:22 +00:00 · 2024-11-25 17:21:52 +01:00 · 2024-11-25 17:21:52 +01:00 · 533009c1da
commit 533009c1da
parent 98d78163a2 fb4c71aebb
3 changed files with 14 additions and 1 deletions
--- a/app/controllers/api/users.php
+++ b/app/controllers/api/users.php
@ -1804,6 +1804,7 @@ App::post('/v1/users/:userId/sessions')
                'provider' => Auth::SESSION_PROVIDER_SERVER,
                'secret' => Auth::hash($secret), // One way hash encryption to protect DB leak
                'userAgent' => $request->getUserAgent('UNKNOWN'),
+                'factors' => ['server'],
                'ip' => $request->getIP(),
                'countryCode' => ($record) ? \strtolower($record['country']['iso_code']) : '--',
                'expire' => $expire,
@ -1816,8 +1817,11 @@ App::post('/v1/users/:userId/sessions')
        $countryName = $locale->getText('countries.' . strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown'));

        $session = $dbForProject->createDocument('sessions', $session);
+
+        $dbForProject->purgeCachedDocument('users', $user->getId());
+
        $session
-            ->setAttribute('secret', $secret)
+            ->setAttribute('secret', Auth::encodeSession($user->getId(), $secret))
            ->setAttribute('countryName', $countryName);

        $queueForEvents
--- a/app/http.php
+++ b/app/http.php
@ -54,6 +54,7 @@ $http
        'http_compression' => false,
        'package_max_length' => $payloadSize,
        'buffer_output_size' => $payloadSize,
+        'task_worker_num' => 1, // required for the task to fetch domains background
    ]);

 $http->on(Constant::EVENT_WORKER_START, function ($server, $workerId) {
--- a/tests/e2e/Services/Users/UsersBase.php
+++ b/tests/e2e/Services/Users/UsersBase.php
@ -310,6 +310,14 @@ trait UsersBase
        $this->assertNotEmpty($session['secret']);
        $this->assertNotEmpty($session['expire']);
        $this->assertEquals('server', $session['provider']);
+
+        $response = $this->client->call(Client::METHOD_GET, '/account', [
+            'content-type' => 'application/json',
+            'x-appwrite-project' => $this->getProject()['$id'],
+            'x-appwrite-session' => $session['secret']
+        ]);
+
+        $this->assertEquals(200, $response['headers']['status-code']);
    }