rainbownapkin/canopy
1
0
Fork 0
Code Issues 5 Pull requests Projects Releases Packages Wiki Activity Actions

Finished up with remember me middleware.

Browse source
This commit is contained in:
rainbow napkin 2025-10-21 00:10:17 -04:00
parent e00e5a608b
commit 61ec3ffc52
4 changed files with 107 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

7
src/controllers/api/account/loginController.js
View file

@ -62,10 +62,13 @@ module.exports.post = async function(req, res){
//Check config for protocol
const secure = config.protocol.toLowerCase() == "https";
//Create expiration date for cookies (180 days)
const expires = new Date(Date.now() + (1000 * 60 * 60 * 24 * 180))
//Set remember me ID and token as browser-side cookies for safe-keeping
res.cookie("rememberme.id", authToken.id, {sameSite: 'strict', httpOnly: true, secure});
res.cookie("rememberme.id", authToken.id, {sameSite: 'strict', httpOnly: true, secure, expires});
//This should be the servers last interaction with the plaintext token before saving the hashed copy, and dropping it out of RAM
res.cookie("rememberme.token", authToken.token, {sameSite: 'strict', httpOnly: true, secure});
res.cookie("rememberme.token", authToken.token, {sameSite: 'strict', httpOnly: true, secure, expires});
}
//Tell the browser everything is dandy