2017-12-17 03:07:53 +01:00
|
|
|
// Copyright 2017 Frédéric Guillot. All rights reserved.
|
|
|
|
// Use of this source code is governed by the Apache 2.0
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
2018-08-25 06:51:50 +02:00
|
|
|
package cookie // import "miniflux.app/http/cookie"
|
2017-12-17 03:07:53 +01:00
|
|
|
|
|
|
|
import (
|
|
|
|
"net/http"
|
|
|
|
"time"
|
|
|
|
)
|
|
|
|
|
|
|
|
// Cookie names.
|
|
|
|
const (
|
|
|
|
CookieSessionID = "sessionID"
|
|
|
|
CookieUserSessionID = "userSessionID"
|
2017-12-23 01:42:17 +01:00
|
|
|
|
|
|
|
// Cookie duration in days.
|
|
|
|
cookieDuration = 30
|
2017-12-17 03:07:53 +01:00
|
|
|
)
|
|
|
|
|
2017-12-23 01:42:17 +01:00
|
|
|
// New creates a new cookie.
|
2018-02-04 00:33:17 +01:00
|
|
|
func New(name, value string, isHTTPS bool, path string) *http.Cookie {
|
2017-12-17 03:07:53 +01:00
|
|
|
return &http.Cookie{
|
|
|
|
Name: name,
|
|
|
|
Value: value,
|
2018-02-04 00:33:17 +01:00
|
|
|
Path: basePath(path),
|
2017-12-17 03:07:53 +01:00
|
|
|
Secure: isHTTPS,
|
|
|
|
HttpOnly: true,
|
2017-12-23 01:42:17 +01:00
|
|
|
Expires: time.Now().Add(cookieDuration * 24 * time.Hour),
|
2018-08-30 06:09:42 +02:00
|
|
|
SameSite: http.SameSiteStrictMode,
|
2017-12-17 03:07:53 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Expired returns an expired cookie.
|
2018-02-04 00:33:17 +01:00
|
|
|
func Expired(name string, isHTTPS bool, path string) *http.Cookie {
|
2017-12-17 03:07:53 +01:00
|
|
|
return &http.Cookie{
|
|
|
|
Name: name,
|
|
|
|
Value: "",
|
2018-02-04 00:33:17 +01:00
|
|
|
Path: basePath(path),
|
2017-12-17 03:07:53 +01:00
|
|
|
Secure: isHTTPS,
|
|
|
|
HttpOnly: true,
|
|
|
|
MaxAge: -1,
|
|
|
|
Expires: time.Date(1970, 1, 1, 0, 0, 0, 0, time.UTC),
|
2018-08-30 06:09:42 +02:00
|
|
|
SameSite: http.SameSiteStrictMode,
|
2017-12-17 03:07:53 +01:00
|
|
|
}
|
|
|
|
}
|
2018-02-04 00:33:17 +01:00
|
|
|
|
|
|
|
func basePath(path string) string {
|
|
|
|
if path == "" {
|
|
|
|
return "/"
|
|
|
|
}
|
|
|
|
return path
|
|
|
|
}
|