Skip to content

Fix Mongoose session authentication#224

Merged
coder13 merged 1 commit into
masterfrom
fix/mongoose-session-deserialization
Jul 14, 2026
Merged

Fix Mongoose session authentication#224
coder13 merged 1 commit into
masterfrom
fix/mongoose-session-deserialization

Conversation

@coder13

@coder13 coder13 commented Jul 14, 2026

Copy link
Copy Markdown
Owner

Summary:

  • replace callback-style Mongoose queries in Passport session deserialization and WCA user persistence
  • prevent Mongoose 8 login failures introduced by the dependency modernization
  • cover deserialization success and persistence-error handling

Validation:

  • focused auth tests
  • server lint
  • full server CI test suite
  • git diff check

CI diagnosis: Cypress failed because Mongoose rejected User.findOne callback usage during Passport deserialization. The reported CodeQL job ID no longer resolves; both associated CodeQL workflow runs succeeded.

Use promise-based Mongoose queries for Passport deserialization and WCA profile persistence so Mongoose 8 no longer rejects callback query APIs during login.
@coder13
coder13 marked this pull request as ready for review July 14, 2026 01:49
@coder13
coder13 merged commit 3bc92d7 into master Jul 14, 2026
9 checks passed
@coder13
coder13 deleted the fix/mongoose-session-deserialization branch July 14, 2026 01:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant