๐ Cookie Security Diagnostics
This release adds comprehensive logging and UI warnings to help diagnose cookie/session authentication issues, making it easier to troubleshoot configuration problems.
What's New
Enhanced Diagnostics
- Session Configuration Logging: See cookie security settings on startup (secure, sameSite, environment)
- Cookie Mismatch Warnings: Prominent warnings when secure cookies are enabled but accessing via HTTP
- Missing Cookie Detection: Backend logs warnings when session cookies aren't being sent
- User-Friendly Errors: Frontend displays detailed error messages explaining cookie issues and solutions
How It Helps
When users experience authentication issues due to cookie configuration (like accessing via HTTP with secure cookies enabled), they'll now see:
- Clear warnings in Docker/server logs on startup
- Runtime warnings when cookies aren't working
- Detailed error message in the UI with troubleshooting steps
This particularly helps diagnose issues like #176 where login appears to succeed but subsequent requests fail.
Bug Fixes
Technical Details
- Added session configuration logging with security warnings
- Added cookie presence detection in auth middleware and routes
- Added login validation to detect cookie issues in frontend
- Improved error message formatting for multi-line messages
Full Changelog: v2.3.0...v2.3.1
๐ MeshMonitor v2.3.1
๐ฆ Installation
Docker (recommended):
docker run -d \
--name meshmonitor \
-p 8080:3001 \
-v meshmonitor-data:/data \
ghcr.io/Yeraze/meshmonitor:v2.3.1๐งช Testing
โ
All tests passed
โ
TypeScript checks passed
โ
Docker images built for linux/amd64, linux/arm64, linux/arm/v7
๐ Changes
See commit history for detailed changes.