remove support for sending authorization with cookies

jerryfletcher21 · jerryfletcher21 · commit d29895b0b0bc · 2025-06-26T18:02:29.000+02:00
diff --git a/robosats/middleware.py b/robosats/middleware.py
@@ -123,11 +123,6 @@ def __call__(self, request):
             ).replace("Private ", "")
             nostr_pubkey = request.META.get("NOSTR_PUBKEY", "").replace("Nostr ", "")
 
-            # Some legacy (pre-federation) clients will still send keys as cookies
-            if public_key == "" or encrypted_private_key == "":
-                public_key = request.COOKIES.get("public_key")
-                encrypted_private_key = request.COOKIES.get("encrypted_private_key", "")
-
             if not public_key or not encrypted_private_key or not nostr_pubkey:
                 return JsonResponse(
                     {
