set session cookie with expiration date and secure flag

2025-05-27 18:57:20 +03:00 · 2025-05-27 18:57:20 +03:00 · 873a4c0c15
commit 873a4c0c15
parent 90cacad449
1 changed files with 8 additions and 0 deletions
--- a/app.lua
+++ b/app.lua
@ -1,4 +1,5 @@
 local lapis = require("lapis")
+local date = require("date")
 local app = lapis.Application()
 local constants = require("constants")
 local babycode = require("lib.babycode")
@ -14,6 +15,13 @@ local util = require("util")
 app:enable("etlua")
 app.layout = require "views.base"

+app.cookie_attributes = function (self, name, value)
+  if name == config.session_name then
+    local expires = date(true):adddays(30):fmt("${http}")
+    return "Expires="..expires.."; Path=/; HttpOnly; Secure"
+  end
+end
+
 local function inject_constants(req)
  req.constants = constants
  math.randomseed(os.time())