fix: default to st-auth-mode if getTokenTransferMethod returns any in…

[furkansenharputlu]

… createNewSession

Summary of change

CreateNewSession now defaults to the value of the st-auth-mode header (if available) if the configured GetTokenTransferMethod returns any.

Related issues

• https://discordapp.com/channels/603466164219281420/1195351655093370880

Test Plan

Added tests that check the output of createNewSession if:

• GetTokenTransferMethod returns any
• st-auth-mode is: cookie, header, or not set

Documentation changes

N/A

Checklist for important updates

• [x] Changelog has been updated
• [ ] coreDriverInterfaceSupported.json file has been updated (if needed)
  • Along with the associated array in supertokens/constants.go
• [ ] frontendDriverInterfaceSupported.json file has been updated (if needed)
• [ ] Changes to the version if needed
  • In supertokens/constants.go > version variable
• [ ] Had installed and ran the pre-commit hook
• [ ] If new thirdparty provider is added,
  • [ ] update switch statement in recipe/thirdparty/providers/config_utils.go file, createProvider function.
  • [ ] add an icon on the user management dashboard.
• [ ] Issue this PR against the latest non released version branch.
  • To know which one it is, run find the latest released tag (git tag) in the format vX.Y.Z, and then find the latest branch (git branch --all) whose X.Y is greater than the latest released tag.
  • If no such branch exists, then create one from the latest released branch.
• [ ] If access token structure has changed
  • Modified test in session/accessTokenVersions_test.go to account for any new claims that are optional or omitted by the core