max/GoWeb
1
1
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases 7 Wiki Activity

Make session cookie HttpOnly and Secure

Browse Source
This commit is contained in:
Maximilian 2022-11-01 17:59:18 -05:00
parent 967e918df1
commit 92529640d6
1 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
database/models/user.go
View File

@ -122,10 +122,12 @@ func createSessionCookie(app *app.App, w http.ResponseWriter, username string) (
// Create session cookie, containing token // Create session cookie, containing token
cookie := &http.Cookie{ cookie := &http.Cookie{
Name: "session", Name: "session",
Value: token, Value: token,
Path: "/", Path: "/",
MaxAge: 86400, MaxAge: 86400,
HttpOnly: true,
Secure: true,
} }
http.SetCookie(w, cookie) http.SetCookie(w, cookie)