LiveView access to cookies

boiserunner · April 20, 2023, 6:23pm

Hi, I’m using clerk.com for authentication (I wrote a thin API wrapper for server-side checks). I rely on conn |> Plug.Conn.fetch_cookies to pull this off.

In a LiveView, is there a way to access cookies? I only see the CSRF in my mount/3 session value. I can see the cookies are there in the browser request to open the socket connection, but I don’t see them in my LiveView.

Thank you!

codeanpeace · April 20, 2023, 10:02pm

Welcome!

How have you configured your Phoenix.Endpoint.socket/3?

This section of the socket/3 docs on specifying Connect info seems relevant.

mindok · April 21, 2023, 12:50am

You need to extract what you want from the cookie and add it to the session. The session gets passed to LiveView in the mount/3 callback.

I do exactly this and it works fine.

Here’s my plug code:

defmodule MyWeb.Plug.PutUserFromCookie do
  @moduledoc """
  Reads a user_details cookie and puts user_details into session
  """
  import Plug.Conn

  def init(_) do
    %{}
  end

  def call(conn, _opts) do
    conn = fetch_cookies(conn)

    cookie = conn.cookies["user_cookie"]

    user_details = case cookie do
      nil -> 
        %{user_name: "Anonymous",  user_id: nil}
      _ ->
       Plug.Conn.Query.decode(cookie)
    end

    conn
    |> put_session(:user_details, user_details) # Makes it available in LiveView
    |> assign(:user_details, user_details) # Makes it available in traditional controllers etc
  end

end

This plug needs to be included in the router pipeline:

  pipeline :browser do
    plug :accepts, ["html", "json"]
    plug :fetch_session
    plug MyWeb.Plug.PutUserFromCookie # <-
    plug :fetch_live_flash
    plug :protect_from_forgery
    plug :put_secure_browser_headers
    plug :put_root_layout, {MyWeb.LayoutView, "root.html"}
  end

Then in your LiveView, your mount function would be something like:

  @impl true
  def mount(_params, session, socket) do
    user_details = session["user_details"]

    socket =
      socket
      |> assign(:user_details, user_details)
...

If you get sick of copying / pasting the code to transfer the user details from session to socket assigns in each and every LiveView, you can set up an on_mount hook

boiserunner · April 21, 2023, 1:06am

I’ll try this tonight. A huge thank you! New to Elixir + Phoenix. Not the steepest learning curve I’ve experienced certainly, but definitely getting tripped up on “simple” things.

boiserunner · April 21, 2023, 2:00am

put_session/3 did the trick. Thanks again!

flaviouk · June 7, 2023, 2:24pm

Hey @boiserunner, would you mind sharing the code you used to authenticate with clerk?

boiserunner · June 7, 2023, 3:00pm

Hey! We are planning to release it as a community project hopefully this month. We are just in a pretty busy release cycle at the moment. I’ll report back when it’s ready to roll.

hassanRsiddiqi · July 16, 2023, 7:53pm

Hi @boiserunner , have you released it? If so, could you please share the GitHub link here?