add support for more cookie flags in Request::AddCookie() method

changed in config options: - renamed: http_session_id_name to session_cookie_name - add config options: session_cookie_path, session_cookie_domain, session_cookie_same_site, session_cookie_http_only, session_cookie_secure
2022-09-08 05:40:44 +02:00
parent 222a1c8a1f
commit 05ecac8426
8 changed files with 174 additions and 55 deletions
--- a/winixd/core/config.h
+++ b/winixd/core/config.h
@@ -287,7 +287,33 @@ public:
 	bool use_internal_loggin_mechanism;

 	// the name of the cookie which has the session identifier
-	std::wstring http_session_id_name;
+	std::wstring session_cookie_name;
+
+	// session cookie path
+	// default: /
+	std::wstring session_cookie_path;
+
+	// session cookie domain
+	// if empty then the domain will be equal base_url
+	// default: empty
+	std::wstring session_cookie_domain;
+
+	// session cookie samesite attribute
+	// 0 - dont set the attribute
+	// 1 - Strict
+	// 2 - Lax
+	// 3 - None
+	// (values the same as values from CookieSameSite enum)
+	// default: 0
+	int session_cookie_same_site;
+
+	// whether or not set HttpOnly attribute on the session cookie
+	// default: false
+	bool session_cookie_http_only;
+
+	// whether or not set Secure attribute on the session cookie
+	// default: false
+	bool session_cookie_secure;

 	// string used in a place where is a user (or group) selected
 	// !! IMPROVE ME should be moved to locales