fix: refactor cookie settings for Home Assistant i-frame login (#7741)

frontend/app/composables/use-auth-backend.ts

@@ -1,6 +1,7 @@
 import { ref, computed } from "vue";
 import type { UserOut } from "~/lib/api/types/user";
 import { clearAllStores } from "~/composables/store";
+import { getTokenCookieOptions } from "~/composables/use-token-cookie";
 
 interface AuthData {
   value: UserOut | null;
@@ -30,10 +31,7 @@ export const useAuthBackend = function (): AuthState {
 
   const runtimeConfig = useRuntimeConfig();
   const tokenName = runtimeConfig.public.AUTH_TOKEN;
-  const tokenCookie = useCookie(tokenName, {
-    maxAge: $appInfo.tokenTime * 60 * 60,
-    secure: $appInfo.production && window?.location?.protocol === "https:",
-  });
+  const tokenCookie = useCookie(tokenName, getTokenCookieOptions());
 
   function setToken(token: string | null) {
     tokenCookie.value = token;

frontend/app/composables/use-token-cookie.ts

@@ -0,0 +1,9 @@
+export function getTokenCookieOptions(): Parameters<typeof useCookie>[1] {
+  const isSecureConnection = useNuxtApp().$appInfo.production && window?.location?.protocol === "https:";
+  return {
+    maxAge: useNuxtApp().$appInfo.tokenTime * 60 * 60,
+    secure: isSecureConnection,
+    sameSite: isSecureConnection ? "none" : "lax",
+    partitioned: isSecureConnection,
+  };
+}