From 7156accbeea818a140e964c96731db0021229478 Mon Sep 17 00:00:00 2001
From: knotteye <knotteye@airmail.cc>
Date: Sun, 10 Jan 2021 11:26:52 -0600
Subject: [PATCH] Fix a bug where we weren't setting X-Auth-As on /api/register
 Also fix new users appearing to not exist until they update their bio/profile

---
 src/database.ts | 2 +-
 src/http.ts     | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/database.ts b/src/database.ts
index 8b1bfda..7a95310 100644
--- a/src/database.ts
+++ b/src/database.ts
@@ -27,7 +27,7 @@ async function addUser(name: string, password: string){
 	let dupe = await query('select * from users where username='+raw.escape(name));
 	if(dupe[0]) return false;
 	await query('INSERT INTO users (username, password_hash, stream_key, record_flag) VALUES ('+raw.escape(name)+', '+raw.escape(hash)+', '+raw.escape(key)+', 0)');
-	await query('INSERT INTO user_meta (username, title, about, live) VALUES ('+raw.escape(name)+',\'\',\'\',false)');
+	await query('INSERT INTO user_meta (username, title, about, live) VALUES ('+raw.escape(name)+',\' \',\' \',false)');
 	await query('INSERT INTO chat_integration (username, irc, xmpp, twitch, discord) VALUES ('+raw.escape(name)+',\'\',\'\',\'\',\'\')');
 	await query('INSERT INTO twitch_mirror (username) VALUES ('+raw.escape(name)+')');
 	return true;
diff --git a/src/http.ts b/src/http.ts
index b06cef1..a331a9a 100644
--- a/src/http.ts
+++ b/src/http.ts
@@ -254,6 +254,7 @@ async function initAPI() {
 					api.register(req.body.username, req.body.password, req.body.confirm, true).then((result) => {
 						if(result[0]) return genToken(req.body.username).then((t) => {
 							res.cookie('Authorization', t, {maxAge: 604800000, httpOnly: true, sameSite: 'Lax'});
+							res.cookie('X-Auth-As', req.body.username, {maxAge: 604800000, httpOnly: false, sameSite: 'Lax'})
 							res.json(result);
 							api.useInvite(req.body.invite);
 							return;
@@ -268,6 +269,7 @@ async function initAPI() {
 		api.register(req.body.username, req.body.password, req.body.confirm).then( (result) => {
 			if(result[0]) return genToken(req.body.username).then((t) => {
 				res.cookie('Authorization', t, {maxAge: 604800000, httpOnly: true, sameSite: 'Lax'});
+				res.cookie('X-Auth-As', req.body.username, {maxAge: 604800000, httpOnly: false, sameSite: 'Lax'})
 				res.json(result);
 				return;
 			});