From f9c2057e64146a997d646ce2b1f43eea039bde85 Mon Sep 17 00:00:00 2001
From: jackiettran <41605212+jackiettran@users.noreply.github.com>
Date: Sun, 18 Jan 2026 14:02:56 -0500
Subject: [PATCH] fixed csrf test and a bug

---
 backend/tests/unit/middleware/csrf.test.js                 | 6 +++---
 frontend/src/components/TwoFactor/RecoveryCodesDisplay.tsx | 4 ++--
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/backend/tests/unit/middleware/csrf.test.js b/backend/tests/unit/middleware/csrf.test.js
index b9f003b..fed8985 100644
--- a/backend/tests/unit/middleware/csrf.test.js
+++ b/backend/tests/unit/middleware/csrf.test.js
@@ -363,7 +363,7 @@ describe('CSRF Middleware', () => {
 
       expect(res.cookie).toHaveBeenCalledWith('csrf-token', 'mock-token-123', {
         httpOnly: true,
-        secure: true,
+        secure: false,
         sameSite: 'strict',
         maxAge: 60 * 60 * 1000
       });
@@ -376,7 +376,7 @@ describe('CSRF Middleware', () => {
 
       expect(res.cookie).toHaveBeenCalledWith('csrf-token', 'mock-token-123', {
         httpOnly: true,
-        secure: true,
+        secure: false,
         sameSite: 'strict',
         maxAge: 60 * 60 * 1000
       });
@@ -440,7 +440,7 @@ describe('CSRF Middleware', () => {
 
       expect(res.cookie).toHaveBeenCalledWith('csrf-token', 'mock-token-123', {
         httpOnly: true,
-        secure: true,
+        secure: false,
         sameSite: 'strict',
         maxAge: 60 * 60 * 1000
       });
diff --git a/frontend/src/components/TwoFactor/RecoveryCodesDisplay.tsx b/frontend/src/components/TwoFactor/RecoveryCodesDisplay.tsx
index e9e3c8d..cd06773 100644
--- a/frontend/src/components/TwoFactor/RecoveryCodesDisplay.tsx
+++ b/frontend/src/components/TwoFactor/RecoveryCodesDisplay.tsx
@@ -27,7 +27,7 @@ const RecoveryCodesDisplay: React.FC<RecoveryCodesDisplayProps> = ({
 
   const handleDownload = () => {
     if (
-      !confirm(
+      !window.confirm(
         "Warning: This will create an unencrypted file on your device. " +
         "Consider using a password manager instead. Continue?"
       )
@@ -48,7 +48,7 @@ const RecoveryCodesDisplay: React.FC<RecoveryCodesDisplayProps> = ({
 
   const handlePrint = () => {
     if (
-      !confirm(
+      !window.confirm(
         "Warning: Printed documents can be easily compromised. " +
         "Consider using a password manager instead. Continue?"
       )