From fb99ee217793f6442576c91f88bfd69f49baf660 Mon Sep 17 00:00:00 2001
From: JimboJoe <jimmy@monin.net>
Date: Mon, 16 Jan 2017 21:19:22 +0100
Subject: [PATCH] Fix HTTP  cookie caching

- Use "Expires" instead of "Max-Age" when using a cookie date (Max-Age is used with an interval of seconds in the future: https://en.wikipedia.org/wiki/HTTP_cookie#Expires_and_Max-Age)
- Fix cookie dates to be compliant with specifications

Fixes errors with various "picky" clients (for example, Lightroom/Piwigo plugin).
---
 helpers.lua | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/helpers.lua b/helpers.lua
index c4fa0f5..e3b08c7 100644
--- a/helpers.lua
+++ b/helpers.lua
@@ -131,11 +131,11 @@ end
 function delete_cookie()
     conf = config.get_config()
 
-    expired_time = "Thu, Jan 01 1970 00:00:00 UTC;"
+    expired_time = "Thu, 01 Jan 1970 00:00:00 UTC;"
     for _, domain in ipairs(conf["domains"]) do
         local cookie_str = "; Domain=."..domain..
                            "; Path=/"..
-                           "; Max-Age="..expired_time
+                           "; Expires="..expired_time
         ngx.header["Set-Cookie"] = {
             "SSOwAuthUser="..cookie_str,
             "SSOwAuthHash="..cookie_str,
@@ -147,9 +147,9 @@ end
 
 -- Expires the redirection cookie
 function delete_redirect_cookie()
-    expired_time = "Thu, Jan 01 1970 00:00:00 UTC;"
+    expired_time = "Thu, 01 Jan 1970 00:00:00 UTC;"
     local cookie_str = "; Path="..conf["portal_path"]..
-                       "; Max-Age="..expired_time
+                       "; Expires="..expired_time
     ngx.header["Set-Cookie"] = "SSOwAuthRedirect=;" ..cookie_str
 end