Cookies secure & domain

This commit is contained in:
Pascal Engélibert 2020-12-18 08:39:29 +01:00
parent a97c62ae9b
commit 71b9e22bba
1 changed files with 9 additions and 0 deletions

View File

@ -402,6 +402,12 @@ async fn handle_post_admin(
let mut cookie = tide::http::Cookie::new("admin", query.psw);
cookie.set_http_only(Some(true));
cookie.set_path(config.root_url.clone());
if let Some(domain) = &config.cookies_domain {
cookie.set_domain(domain.clone());
}
if config.cookies_https_only {
cookie.set_secure(Some(true));
}
r.insert_cookie(cookie);
r
})
@ -428,6 +434,9 @@ async fn handle_admin_logout(
let mut r: tide::Response = tide::Redirect::new("/").into();
if let Some(mut cookie) = req.cookie("admin") {
cookie.set_path(config.root_url.clone());
if let Some(domain) = &config.cookies_domain {
cookie.set_domain(domain.clone());
}
r.remove_cookie(cookie);
}
Ok(r)