test

app/api/auth/logout/route.ts

@@ -1,23 +1,22 @@
-import { NextRequest, NextResponse } from "next/server";
+import { NextResponse } from "next/server";
 import MY_TOKEN_KEY from "@/lib/get-cookie-name";
 
-export async function POST(req: NextRequest) {
+export async function POST() {
   const cookieName = MY_TOKEN_KEY();
-  const host = req.headers.get("host") ?? "localhost:3000";
-  const isSecure = !host.includes("localhost");
+  const isProduction = process.env.NODE_ENV === "production";
   
   const response = NextResponse.json(
     { message: "Logged out successfully" },
     { status: 200 }
   );
   
-  // Clear the cookie (matching the same settings as login)
+  // Clear the HTTP-only cookie
   const cookieOptions = [
     `${cookieName}=`,
     "Max-Age=0",
     "Path=/",
-    "SameSite=Lax",
-    ...(isSecure ? ["Secure"] : [])
+    "HttpOnly",
+    ...(isProduction ? ["Secure", "SameSite=None"] : ["SameSite=Lax"])
   ].join("; ");
   
   response.headers.set("Set-Cookie", cookieOptions);

app/api/auth/route.ts

@@ -1,5 +1,4 @@
 import { NextRequest, NextResponse } from "next/server";
-import MY_TOKEN_KEY from "@/lib/get-cookie-name";
 
 export async function POST(req: NextRequest) {
   const body = await req.json();
@@ -71,16 +70,6 @@ export async function POST(req: NextRequest) {
   }
   const user = await userResponse.json();
 
-  // Calculate cookie expiration
-  const expiresIn = response.expires_in || 3600;
-  const maxAge = expiresIn;
-
-  // Determine if we should use secure cookies
-  const isSecure = !host.includes("localhost");
-
-  // Set the cookie via Set-Cookie header
-  const cookieValue = `${MY_TOKEN_KEY()}=${response.access_token}; Path=/; Max-Age=${maxAge}; SameSite=Lax${isSecure ? "; Secure" : ""}`;
-
   return NextResponse.json(
     {
       access_token: response.access_token,
@@ -91,7 +80,6 @@ export async function POST(req: NextRequest) {
       status: 200,
       headers: {
         "Content-Type": "application/json",
-        "Set-Cookie": cookieValue,
       },
     }
   );

app/layout.tsx

@@ -56,16 +56,8 @@ export const viewport: Viewport = {
 
 async function getMe() {
   const cookieStore = await cookies();
-  const tokenKey = MY_TOKEN_KEY();
-  const token = cookieStore.get(tokenKey)?.value;
-
-  // Debug logging
-  console.log("🔍 [DEBUG] Cookie Key:", tokenKey);
-  console.log("🔍 [DEBUG] Token found:", !!token);
-  console.log(
-    "🔍 [DEBUG] All cookies:",
-    cookieStore.getAll().map((c) => c.name)
-  );
+  const cookieName = MY_TOKEN_KEY();
+  const token = cookieStore.get(cookieName)?.value;
 
   if (!token) return { user: null, projects: [], errCode: null };
   try {
@@ -74,9 +66,10 @@ async function getMe() {
         Authorization: `Bearer ${token}`,
       },
     });
+    console.log("✅ [Server] User authenticated:", res.data.user?.name);
     return { user: res.data.user, projects: res.data.projects, errCode: null };
   } catch (err: any) {
-    console.error("🔍 [DEBUG] API Error:", err.status, err.message);
+    console.error("❌ [Server] Auth error:", err.status, err.message);
     return { user: null, projects: [], errCode: err.status };
   }
 }

assets/globals.css

@@ -131,7 +131,7 @@ body {
 .background__noisy {
   @apply bg-blend-normal pointer-events-none opacity-90;
   background-size: 25ww auto;
-  background-image: url("/background_noisy.webp");
+  background-image: url("/deepsite/background_noisy.webp");
   @apply fixed w-screen h-screen -z-1 top-0 left-0;
 }
 

components/editor/ask-ai/settings.tsx

@@ -264,7 +264,7 @@ export function Settings({
                         <BrainIcon className="size-4 mr-2" />
                       ) : (
                         <Image
-                          src={`/providers/${id}.svg`}
+                          src={`/deepsite/providers/${id}.svg`}
                           alt={id}
                           className="size-5 mr-2"
                           width={20}

hooks/useUser.ts

@@ -75,12 +75,20 @@ export const useUser = (initialData?: {
           const expiresDate = new Date();
           expiresDate.setTime(expiresDate.getTime() + expiresIn * 1000);
           
-          setToken(res.data.access_token, {
+          const cookieOptions: any = {
             expires: expiresDate,
             path: '/',
             sameSite: 'lax',
-            secure: window.location.protocol === 'https:',
-          });
+          };
+          
+          if (window.location.protocol === 'https:') {
+            cookieOptions.secure = true;
+          }
+          
+          setToken(res.data.access_token, cookieOptions);
+          
+          const cookieString = `${MY_TOKEN_KEY()}=${res.data.access_token}; path=/; max-age=${expiresIn}; samesite=lax${cookieOptions.secure ? '; secure' : ''}`;
+          document.cookie = cookieString;
           
           const meResponse = await api.get("/me");
           if (meResponse.data) {
@@ -93,12 +101,10 @@ export const useUser = (initialData?: {
             }
           }
           
-          // if (currentRoute) {
-          //   router.push(currentRoute);
-          //   removeCurrentRoute();
-          // } else {
-            router.push("/");
-          // }
+          setTimeout(() => {
+            window.location.href = "/";
+          }, 100);
+          
           toast.success("Login successful");
         }
       })

lib/api.ts

@@ -6,6 +6,7 @@ export const api = axios.create({
   headers: {
     cache: "no-store",
   },
+  withCredentials: true, // Ensure cookies are sent with requests
 });
 
 export const apiServer = axios.create({
@@ -13,6 +14,7 @@ export const apiServer = axios.create({
   headers: {
     cache: "no-store",
   },
+  withCredentials: true, // Ensure cookies are sent with requests
 });
 api.interceptors.request.use(
   async (config) => {