BTHLABS-50: Safari Web extension

Co-authored-by: Tomek Wójcik <labs@tomekwojcik.pl>
Co-committed-by: Tomek Wójcik <labs@tomekwojcik.pl>

services/backend/hotpocket_backend/settings/webapp.py

@@ -4,9 +4,13 @@ from __future__ import annotations
 
 import os
 
+from corsheaders.defaults import default_headers
+
 from .base import *  # noqa: F401,F403
 
 INSTALLED_APPS += [  # noqa: F405
+    'bthlabs_jsonrpc_django',
+    'corsheaders',
     'crispy_forms',
     'crispy_bootstrap5',
     'django_htmx',
@@ -16,9 +20,11 @@ MIDDLEWARE = [
     'hotpocket_backend.apps.core.middleware.RequestIDMiddleware',
     'django.middleware.security.SecurityMiddleware',
     'django.contrib.sessions.middleware.SessionMiddleware',
+    'corsheaders.middleware.CorsMiddleware',
     'django.middleware.common.CommonMiddleware',
     'django.middleware.csrf.CsrfViewMiddleware',
     'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'hotpocket_backend.apps.accounts.middleware.AccessTokenMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
     'social_django.middleware.SocialAuthExceptionMiddleware',
@@ -29,6 +35,9 @@ ROOT_URLCONF = 'hotpocket_backend.urls.webapp'
 
 LOGIN_REDIRECT_URL = '/accounts/post-login/'
 
+SESSION_COOKIE_SAMESITE = 'None'
+SESSION_COOKIE_SECURE = True
+
 CRISPY_ALLOWED_TEMPLATE_PACKS = 'bootstrap5'
 CRISPY_TEMPLATE_PACK = 'bootstrap5'
 
@@ -56,3 +65,16 @@ SAVES_ASSOCIATION_ADAPTER = os.environ.get(
     'HOTPOCKET_BACKEND_SAVES_ASSOCIATION_ADAPTER',
     'hotpocket_backend.apps.saves.adapters.basic:BasicAssociationAdapter',
 )
+
+JSONRPC_METHOD_MODULES = [
+    'hotpocket_backend.apps.ui.rpc_methods',
+]
+
+CORS_ALLOWED_ORIGIN_REGEXES = [
+    r'safari-web-extension:\/\/.+?',
+]
+CORS_ALLOW_CREDENTIALS = True
+CORS_ALLOW_HEADERS = (
+    *default_headers,
+    'cookie',
+)