From 490d063fa1a896ac1578975d0bd4a3a7aaafebd0 Mon Sep 17 00:00:00 2001
From: mewilker <mewilk@byu.edu>
Date: Tue, 27 Jan 2026 19:01:48 -0700
Subject: [PATCH] fix for making the cookie http only

---
 src/main/java/edu/byu/cs/controller/WebSocketController.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/java/edu/byu/cs/controller/WebSocketController.java b/src/main/java/edu/byu/cs/controller/WebSocketController.java
index 88f72b8cc..76731c020 100644
--- a/src/main/java/edu/byu/cs/controller/WebSocketController.java
+++ b/src/main/java/edu/byu/cs/controller/WebSocketController.java
@@ -32,7 +32,7 @@ public static void onMessage(WsMessageContext ctx) {
         String netId;
         ctx.enableAutomaticPings(20, TimeUnit.SECONDS);
         try {
-            netId = JwtUtils.validateToken(message);
+            netId = JwtUtils.validateToken(ctx.cookie("token"));
         } catch (Exception e) {
             LOGGER.warn("Exception thrown while validating token: ", e);
             sendError(session, "Invalid token");