feat(security): add session cookie management functions

* Introduce SessionCookieOptions for configurable session cookies * Implement SetSessionCookie, GetSessionCookie, and ClearSessionCookie functions * Enhance cookie handling in DatabaseAuthenticator
2026-04-05 15:36:15 +00:00 · 2026-03-24 17:11:53 +02:00
parent e289c2ed8f
commit 22a4ab345a
2 changed files with 121 additions and 3 deletions
--- a/pkg/security/providers.go
+++ b/pkg/security/providers.go
@@ -222,9 +222,8 @@ func (a *DatabaseAuthenticator) Authenticate(r *http.Request) (*UserContext, err

 	if sessionToken == "" {
 		// Try cookie
-		cookie, err := r.Cookie("session_token")
-		if err == nil {
-			tokens = []string{cookie.Value}
+		if token := GetSessionCookie(r); token != "" {
+			tokens = []string{token}
 			reference = "cookie"
 		}
 	} else {