From 2699aa8db727c20dd74fe05887c511fa3f1cf68a Mon Sep 17 00:00:00 2001 From: Alexandre Aubin Date: Mon, 19 Nov 2018 16:03:35 +0000 Subject: [PATCH] Clarify Set-Cookie syntax --- helpers.lua | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/helpers.lua b/helpers.lua index 59fd3ea..8883624 100644 --- a/helpers.lua +++ b/helpers.lua @@ -145,10 +145,10 @@ function set_auth_cookie(user, domain) "|"..session_key) local cookie_str = "; Domain=."..domain.. "; Path=/".. - "; Expires="..os.date("%a, %d %b %Y %X UTC;", expire).. + "; Expires="..os.date("%a, %d %b %Y %X UTC", expire).. "; Secure".. "; HttpOnly".. - "; SameSite=Strict" + "; SameSite=Strict ;;" ngx.header["Set-Cookie"] = { "SSOwAuthUser="..user..cookie_str, @@ -162,14 +162,14 @@ end function delete_cookie() conf = config.get_config() - local expired_time = "Thu, 01 Jan 1970 00:00:00 UTC;" + local expired_time = "Thu, 01 Jan 1970 00:00:00 UTC" for _, domain in ipairs(conf["domains"]) do local cookie_str = "; Domain=."..domain.. "; Path=/".. "; Expires="..expired_time.. "; Secure".. "; HttpOnly".. - "; SameSite=Strict" + "; SameSite=Strict ;;" ngx.header["Set-Cookie"] = { "SSOwAuthUser="..cookie_str, "SSOwAuthHash="..cookie_str, @@ -181,12 +181,12 @@ end -- Expires the redirection cookie function delete_redirect_cookie() - local expired_time = "Thu, 01 Jan 1970 00:00:00 UTC;" + local expired_time = "Thu, 01 Jan 1970 00:00:00 UTC" local cookie_str = "; Path="..conf["portal_path"].. "; Expires="..expired_time.. "; Secure".. "; HttpOnly".. - "; SameSite=Strict" + "; SameSite=Strict ;;" ngx.header["Set-Cookie"] = "SSOwAuthRedirect=;" ..cookie_str end