Merge pull request #4226 from xfalcox/non-persistent-session

FEATURE: add setting permanent_session_cookie to configure session st…
2025-06-01 02:04:53 +08:00 · 2016-06-29 16:47:31 +10:00
parent be76a9808a 09ef5f613e
commit f88cf4e2f0
3 changed files with 7 additions and 1 deletions
--- a/lib/auth/default_current_user_provider.rb
+++ b/lib/auth/default_current_user_provider.rb
@ -66,7 +66,11 @@ class Auth::DefaultCurrentUserProvider
      user.auth_token = SecureRandom.hex(16)
      user.save!
    end
-    cookies.permanent[TOKEN_COOKIE] = { value: user.auth_token, httponly: true }
+    if SiteSetting.permanent_session_cookie
+      cookies.permanent[TOKEN_COOKIE] = { value: user.auth_token, httponly: true }
+    else
+      cookies[TOKEN_COOKIE] = { value: user.auth_token, httponly: true }
+    end
    make_developer_admin(user)
    enable_bootstrap_mode(user)
    @env[CURRENT_USER_KEY] = user