[SPO] HTTP-Only/Secure Cookies

[Meshz]

Hello,

First of all, thank you for this awesome & helpful package.

I got an issue trying to download a file from SharePoint Online. I log into SPO through the "Fetch API" of RN. In the reponse headers of the login method I get 2 cookies that are HTTP-Only & Secure named "rtFa" & "FedAuth". These cookies are automatically set and sent back with every further request.

When I use the Fetch API, I'm able to get data from SPO. However, when I use RNFetchBlob I get "Access denied.". I guess the problem is that the cookies (rtFa & FedAuth) are not passed to the fetch function your plugin and I can't set them as they are HTTP-Only/Secure.

Any ideas how to resolve this issue? Any help would be greatly appreciated!

[wkh237]

Thanks for reporting this issue. Does it happens on both Android and iOS?

[Meshz]

I only tried on Android for now tbh.

Do you want me to setup it on iOS and check if it fails too?

[wkh237]

@Meshz , after some investigation I think this may due to the lack of cookie storage mechanism on Android native implementation. I'll add it and publish a beta release.

[Meshz]

@wkh237 Thanks for your feedback. If u want me to do any tests, I'll be glad to help. :)

[wkh237]

@Meshz , I've added the cookie storage to Android, please try upgrade the package to 0.10.0-beta.2 and see if it works. Thank you 😄

[Meshz]

@wkh237 I'll test as soon as I can, problably coming back to you on Monday. Thanks!

[Meshz]

@wkh237 I tried both 0.10.0-beta.2 and 0.10.0-beta.3 and it's not working on my HTC One X+ - 4.4.4 (KitKat API Level 19). Do you need any additional info / output?

[wkh237]

@Meshz , I'm now familiar with SharePoint so I'm not be able to gather enough information for this issue, is there any way I can test it ? I think it'd be helpful, thank you 😄

[Meshz]

@wkh237 I just sent you all the necessary files on your e-mail (x...n@gmail.com). Please let me know if u need any other info!