Changed cookie name from coreander to session

svera · svera · commit 48ddb69a47a9 · 2024-10-11T10:48:39.000+02:00
diff --git a/internal/webserver/controller/auth/signin.go b/internal/webserver/controller/auth/signin.go
@@ -38,7 +38,7 @@ func (a *Controller) SignIn(c *fiber.Ctx) error {
 	}
 
 	c.Cookie(&fiber.Cookie{
-		Name:     "coreander",
+		Name:     "session",
 		Value:    signedToken,
 		Path:     "/",
 		MaxAge:   int(a.config.SessionTimeout.Seconds()),
diff --git a/internal/webserver/controller/auth/signout.go b/internal/webserver/controller/auth/signout.go
@@ -9,8 +9,8 @@ import (
 // Logs out user and removes their JWT.
 func (a *Controller) SignOut(c *fiber.Ctx) error {
 	c.Cookie(&fiber.Cookie{
-		Name:     "coreander",
-		Value:    "void",
+		Name:     "session",
+		Value:    "",
 		Path:     "/",
 		MaxAge:   -1,
 		Secure:   false,
diff --git a/internal/webserver/controller/user/update.go b/internal/webserver/controller/user/update.go
@@ -72,7 +72,7 @@ func (u *Controller) updateUserData(c *fiber.Ctx, user *model.User, session mode
 		}
 
 		c.Cookie(&fiber.Cookie{
-			Name:     "coreander",
+			Name:     "session",
 			Value:    signedToken,
 			Path:     "/",
 			MaxAge:   int(session.Exp),
diff --git a/internal/webserver/middleware.go b/internal/webserver/middleware.go
@@ -59,7 +59,7 @@ func AllowIfNotLoggedIn(jwtSecret []byte) func(*fiber.Ctx) error {
 	return jwtware.New(jwtware.Config{
 		SigningKey:    jwtSecret,
 		SigningMethod: "HS256",
-		TokenLookup:   "cookie:coreander",
+		TokenLookup:   "cookie:session",
 		SuccessHandler: func(c *fiber.Ctx) error {
 			return fiber.ErrForbidden
 		},
@@ -75,7 +75,7 @@ func AlwaysRequireAuthentication(jwtSecret []byte, sender Sender) func(*fiber.Ct
 	return jwtware.New(jwtware.Config{
 		SigningKey:    jwtSecret,
 		SigningMethod: "HS256",
-		TokenLookup:   "cookie:coreander",
+		TokenLookup:   "cookie:session",
 		SuccessHandler: func(c *fiber.Ctx) error {
 			c.Locals("Session", sessionData(c))
 			return c.Next()
@@ -91,7 +91,7 @@ func ConfigurableAuthentication(jwtSecret []byte, sender Sender, requireAuth boo
 	return jwtware.New(jwtware.Config{
 		SigningKey:    jwtSecret,
 		SigningMethod: "HS256",
-		TokenLookup:   "cookie:coreander",
+		TokenLookup:   "cookie:session",
 		SuccessHandler: func(c *fiber.Ctx) error {
 			c.Locals("Session", sessionData(c))
 			return c.Next()
@@ -111,7 +111,7 @@ func forbidden(c *fiber.Ctx, sender Sender, err error) error {
 		emailSendingConfigured = false
 	}
 	message := ""
-	if err.Error() != "missing or malformed JWT" && c.Cookies("coreander") != "void" {
+	if err.Error() != "missing or malformed JWT" && c.Cookies("session") != "" {
 		message = "Session expired, please log in again."
 	}
 	return c.Status(fiber.StatusForbidden).Render("auth/login", fiber.Map{

Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,7 @@ func (a Controller) SignIn(c fiber.Ctx) error {`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`c.Cookie(&fiber.Cookie{`
`41`		`- Name: "coreander",`
	`41`	`+ Name: "session",`
`42`	`42`	`Value: signedToken,`
`43`	`43`	`Path: "/",`
`44`	`44`	`MaxAge: int(a.config.SessionTimeout.Seconds()),`
Original file line number	Diff line number	Diff line change
`@@ -72,7 +72,7 @@ func (u Controller) updateUserData(c fiber.Ctx, user *model.User, session mode`
`72`	`72`	`}`
`73`	`73`
`74`	`74`	`c.Cookie(&fiber.Cookie{`
`75`		`- Name: "coreander",`
	`75`	`+ Name: "session",`
`76`	`76`	`Value: signedToken,`
`77`	`77`	`Path: "/",`
`78`	`78`	`MaxAge: int(session.Exp),`