appdaemon dashboard authentication cookie set not conform to RFC 6265

[mickaelmarin]

What happened?

I found a problem with the cookie that is settled in the http.py file in logon_response function, the cookie adcreds is randomly conform to the RFC6265. If the cookie conform the double quote are not present that surounded the token and the auth in websocket not work.

thanks

Version

0.16.7

Installation type

Home Assistant add-on

Relevant log output

Relevant code in the app or config file that caused the issue

hashed = bcrypt.hashpw(str.encode(self.password), bcrypt.gensalt(self.work_factor))

Anything else?

No response

[mickaelmarin]

For my need I replace hashed = bcrypt.hashpw(str.encode(self.password), bcrypt.gensalt(self.work_factor)) in logon_response

By hashed = await self.valid_rfc6265_token()

AND I added this function above logon_response function:

async def valid_rfc6265_token(self):
   RFC6265_TOKEN_PATTERN = r"^[a-zA-Z0-9!#$%&'*+\-.^_`|~]+$" 

   while True:
     hashed = bcrypt.hashpw(str.encode(self.password), \
                       bcrypt.gensalt(self.work_factor)).decode("utf-8")
     if not re.fullmatch(RFC6265_TOKEN_PATTERN, hashed):
       break

     return hashed