session: adds CookieSameSite to ManagerConfig

2024-11-23 21:20:55 +00:00 · 2020-09-15 18:05:33 -03:00 · 2020-09-15 18:05:33 -03:00 · 26208a53e6
commit 26208a53e6
parent f6519b29a8
1 changed files with 20 additions and 15 deletions
--- a/session/session.go
+++ b/session/session.go
@ -106,6 +106,7 @@ type ManagerConfig struct {
 	SessionNameInHTTPHeader string        `json:"SessionNameInHTTPHeader"`
 	EnableSidInURLQuery     bool          `json:"EnableSidInURLQuery"`
 	SessionIDPrefix         string        `json:"sessionIDPrefix"`
 	CookieSameSite          http.SameSite `json:"cookieSameSite"`
 }
 // Manager contains Provider and its configuration.
@ -232,6 +233,7 @@ func (manager *Manager) SessionStart(w http.ResponseWriter, r *http.Request) (se
 		HttpOnly: !manager.config.DisableHTTPOnly,
 		Secure:   manager.isSecure(r),
 		Domain:   manager.config.Domain,
 		SameSite: manager.config.CookieSameSite,
 	}
 	if manager.config.CookieLifeTime > 0 {
 		cookie.MaxAge = manager.config.CookieLifeTime
@ -271,7 +273,9 @@ func (manager *Manager) SessionDestroy(w http.ResponseWriter, r *http.Request) {
 			HttpOnly: !manager.config.DisableHTTPOnly,
 			Expires:  expiration,
 			MaxAge:   -1,
-			Domain:   manager.config.Domain}
+			Domain:   manager.config.Domain,
 			SameSite: manager.config.CookieSameSite,
 		}
 		http.SetCookie(w, cookie)
 	}
@ -306,6 +310,7 @@ func (manager *Manager) SessionRegenerateID(w http.ResponseWriter, r *http.Reque
 			HttpOnly: !manager.config.DisableHTTPOnly,
 			Secure:   manager.isSecure(r),
 			Domain:   manager.config.Domain,
 			SameSite: manager.config.CookieSameSite,
 		}
 	} else {
 		oldsid, _ := url.QueryUnescape(cookie.Value)