[add] configurable cookie attribute settings

2023-10-24 18:41:25 -04:00
parent 912b054502
commit 3577dd89a0
3 changed files with 14 additions and 6 deletions
--- a/api/api.go
+++ b/api/api.go
@@ -52,8 +52,8 @@ func NewApi(db *database.DBManager, c *config.Config) *API {
 	store := cookie.NewStore(newToken)
 	store.Options(sessions.Options{
 		MaxAge:   60 * 60 * 24 * 7,
-		Secure:   true,
-		HttpOnly: true,
+		Secure:   c.CookieSecure,
+		HttpOnly: c.CookieHTTPOnly,
 		SameSite: http.SameSiteStrictMode,
 	})
 	api.Router.Use(sessions.Sessions("token", store))