Barcode Betty a54a57fbc4 fix(api): read __Secure- prefixed session cookie in auth ...

Better-auth sets the session cookie with the __Secure- prefix on HTTPS
deployments. The API was only reading the plain cookie name, causing all
authenticated calls to return 401 in dev/UAT/prod environments.

Check __Secure-better-auth.session_token first, fall back to
better-auth.session_token for HTTP local dev compatibility.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-04-04 18:40:22 +00:00

.github/workflows

fix(api): revert auth/type regressions from standalone sync, keep email-in feature only

2026-04-03 09:40:39 +00:00

alembic

fix(api): bootstrap users table in migration 007 + harden create_all

2026-04-04 17:10:29 +00:00

src/cartsnitch_api

fix(api): read __Secure- prefixed session cookie in auth

2026-04-04 18:40:22 +00:00

tests

fix: correct email-in-address format, remove dead code, update tests (#110)

2026-04-03 13:34:21 +00:00

.dockerignore

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

.gitignore

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

alembic.ini

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

CLAUDE.md

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

Dockerfile

fix(api): make alembic migrations idempotent for fresh databases

2026-04-04 16:28:29 +00:00

pyproject.toml

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

renovate.json

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

S

Description

CartSnitch API gateway — frontend-facing REST API

942 KiB

Languages

Python 99.4%

Dockerfile 0.4%

Mako 0.2%