open-source-mirrors
/
jfa-go
mirror of https://github.com/hrfee/jfa-go
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

auth: add note for self about secure cookies

Browse Source
pull/297/head
Harvey Tindall 3 months ago
parent fcdd4e4518
commit 711b817cff
No known key found for this signature in database
GPG Key ID: BBC65952848FB1A2
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File

1
auth.go
Unescape View File

@ -251,6 +251,7 @@ func (app *appContext) getTokenLogin(gc *gin.Context) {
// host := gc.Request.URL.Hostname() // host := gc.Request.URL.Hostname()
host := app.ExternalDomain host := app.ExternalDomain
// Before you think this is broken: the first "true" arg is for "secure", i.e. only HTTPS!
gc.SetCookie("refresh", refresh, REFRESH_TOKEN_VALIDITY_SEC, "/", host, true, true) gc.SetCookie("refresh", refresh, REFRESH_TOKEN_VALIDITY_SEC, "/", host, true, true)
gc.JSON(200, getTokenDTO{token}) gc.JSON(200, getTokenDTO{token})
} }

Write Preview
Loading…
Cancel
Save