fix: --fresh fails to clean cookie_storage, auth_svc crashes on key mismatch (#3355)

deacon-mp · deacon-mp · Fiona McCrae · web-flow · commit f630405d997a · 2026-04-14T08:18:42.000-04:00
* fix: --fresh fails to clean cookie_storage, auth_svc crashes on key mismatch

---------

Co-authored-by: deacon-mp &lt;mperry@mitre.org&gt;
Co-authored-by: Fiona McCrae &lt;fmccrae@mitre.org&gt;
Co-authored-by: Fiona McCrae &lt;35509590+fionamccrae@users.noreply.github.com&gt;
Co-authored-by: uruwhy &lt;58484522+uruwhy@users.noreply.github.com&gt;
diff --git a/app/service/auth_svc.py b/app/service/auth_svc.py
@@ -83,7 +83,7 @@ async def apply(self, app, users):
         except (ValueError, TypeError):
             max_age = None
         try:
-            if os.path.exists(os.path.join('data', cookie_file)):
+            if os.path.exists(cookie_path):
                 secret_key = file_svc._read(cookie_path)
                 self.log.debug('Loaded persistent session key from data/cookie_storage')
             else:
diff --git a/app/service/data_svc.py b/app/service/data_svc.py
@@ -35,6 +35,7 @@
     'data/results/*',
     'data/sources/*',
     'data/object_store',
+    'data/cookie_storage',
 )
 
 PAYLOADS_CONFIG_STANDARD_KEY = 'standard_payloads'

Original file line number	Diff line number	Diff line change
`@@ -35,6 +35,7 @@`
`35`	`35`	`'data/results/*',`
`36`	`36`	`'data/sources/*',`
`37`	`37`	`'data/object_store',`
	`38`	`+ 'data/cookie_storage',`
`38`	`39`	`)`
`39`	`40`
`40`	`41`	`PAYLOADS_CONFIG_STANDARD_KEY = 'standard_payloads'`