feat(auth): improve session cookie handling and logging in middleware

- Enhanced session middleware to create or replace session cookies based on header values, ensuring proper session management for mobile applications.
- Added detailed logging for cookie headers and session ID usage to facilitate debugging and traceability.
- Updated logic to maintain existing cookies while injecting the session cookie, improving compatibility with other cookies.

worklenz-backend/src/middlewares/session-middleware.ts

@@ -44,10 +44,27 @@ export default (req: any, res: any, next: any) => {
   const headerSessionId = req.headers['x-session-id'];
   const headerSessionName = req.headers['x-session-name'];
   
-  if (headerSessionId && headerSessionName && !req.headers.cookie) {
+  console.log("Session middleware debug:");
+  console.log("- Cookie header:", req.headers.cookie);
+  console.log("- X-Session-ID header:", headerSessionId);
+  console.log("- X-Session-Name header:", headerSessionName);
+  
+  if (headerSessionId && headerSessionName) {
     console.log("Mobile app using header-based session:", headerSessionId);
-    // Inject the session cookie from header for session middleware to process
+    // Create or override the cookie header with the session from header
-    req.headers.cookie = `${headerSessionName}=s%3A${headerSessionId}`;
+    const sessionCookie = `${headerSessionName}=s%3A${headerSessionId}`;
+    if (req.headers.cookie) {
+      // Replace existing session cookie while keeping other cookies
+      req.headers.cookie = req.headers.cookie
+        .split(';')
+        .filter((cookie: string) => !cookie.trim().startsWith(headerSessionName))
+        .concat(sessionCookie)
+        .join(';');
+    } else {
+      // Set the session cookie from header
+      req.headers.cookie = sessionCookie;
+    }
+    console.log("Updated cookie header:", req.headers.cookie);
   }
   
   sessionMiddleware(req, res, next);