roaster icon indicating copy to clipboard operation
roaster copied to clipboard
verified publisher icon eeditiones

Improve login and cookie handling

Open line-o opened this issue 1 year ago • 0 comments

Please have a look at the documentation for the new feature: https://github.com/eeditiones/roaster/blob/3b0ab4e867a21683bb00b93ab0be7809b6200887/doc/cookie-auth.md

FEATURES

  • allow and encourage custom login route handlers
    • read user name and login from any body or header content including XML bodies
  • allow and encourage custom logout route handlers
  • allows setting HttpOnly and SameSite attributes on login domain cookies (implementation in content/cookie.xqm)

FIXES

  • no redirect needed for logout, nor logout=true
  • do not attempt to login on every request
  • get rid of hard-coded field names user, password

line-o avatar Sep 22 '24 23:09 line-o