xevion/linkpulse
1
0
Fork 0
mirror of https://github.com/Xevion/linkpulse.git synced 2025-12-08 08:07:41 -06:00
Code Issues Packages Projects Releases Wiki Activity

Fixup hacky login session system, add separate development Caddyfile for CORS cookie issue

Browse Source
This commit is contained in:
Xevion
2024-11-10 23:40:00 -06:00
parent 9990bcab02
commit f14285b252
8 changed files with 76 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
backend/linkpulse/routers/auth.py
View File

@@ -5,7 +5,7 @@ import structlog
from fastapi import APIRouter, Depends, Response, status
from linkpulse.dependencies import RateLimiter, SessionDependency
from linkpulse.models import Session, User
from linkpulse.utilities import utc_now
from linkpulse.utilities import utc_now, is_development
from pwdlib import PasswordHash
from pwdlib.hashers.argon2 import Argon2Hasher
from pydantic import BaseModel, EmailStr, Field
@@ -109,7 +109,8 @@ async def login(body: LoginBody, response: Response):
)
# Set Cookie of session token
response.set_cookie("session", token, samesite="strict", max_age=int(session_duration.total_seconds()))
max_age = int(session_duration.total_seconds())
response.set_cookie("session", token, max_age=max_age, secure=not is_development, httponly=True)
return {"email": user.email, "expiry": session.expiry}