oadmin/new-api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: configure session store options for API routes

Browse Source 
- Set session cookie path to "/api"
- Disable secure flag for local development
- Enable HttpOnly flag for improved security
This commit is contained in:
1808837298@qq.com
2025-02-11 15:45:24 +08:00
parent 0e89939a12
commit 6acc37cf27
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
main.go
View File

@@ -145,6 +145,11 @@ func main() {
middleware.SetUpLogger(server) middleware.SetUpLogger(server)
// Initialize session store // Initialize session store
store := cookie.NewStore([]byte(common.SessionSecret)) store := cookie.NewStore([]byte(common.SessionSecret))
store.Options(sessions.Options{
Path: "/api",
Secure: false,
HttpOnly: true,
})
server.Use(sessions.Sessions("session", store)) server.Use(sessions.Sessions("session", store))
router.SetRouter(server, buildFS, indexPage) router.SetRouter(server, buildFS, indexPage)