Skip to content

Commit

Permalink
(NOBIDS) frontend: invalidate old cookies
Browse files Browse the repository at this point in the history
  • Loading branch information
@guybrush
guybrush committed May 21, 2024
1 parent 4960a41 commit d2d15fc
Showing 1 changed file with 14 additions and 0 deletions.
14 changes: 14 additions & 0 deletions handlers/auth.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -183,6 +183,20 @@ func Login(w http.ResponseWriter, r *http.Request) {
RedirectData: redirectData}
data.Meta.NoTrack = true

if utils.Config.Frontend.SessionCookieDeriveDomainFromRequest {
// delete old cookie
// TODO:patrick delete this once all users have the new cookie
c := &http.Cookie{
Name: utils.SessionStore.SCS.Cookie.Name,
Value: "",
Path: "/",
Expires: time.Unix(0, 0),
Domain: utils.SessionStore.SCS.Cookie.Domain,
HttpOnly: true,
}
http.SetCookie(w, c)
}

if handleTemplateError(w, r, "auth.go", "Login", "", loginTemplate.ExecuteTemplate(w, "layout", data)) != nil {
return // an error has occurred and was processed
}
Expand Down

0 comments on commit d2d15fc

Please sign in to comment.