Gabe De Luca
Gabe De Luca
The dependencies on this exercise were fairly large (~87MB). Depending on network speed, crates.io speed (I average ~20s) and then a non-cached build+test takes ~9s on a local, which I'm...
So the cookies expire after 15 minutes but the database session expires after 24 hours no matter what?
I have been thinking about this kind of problem recently on my own projects, I know this might not be what you are looking for but it may help others....
There is a pr which will help do exactly what you are asking but we have not pulled it yet #159.
Just wanted to pointing out that the OWASP link only states that the cookies need to be encrypted if the cookie's value actually contain data of value. Though honestly I'd...
how are you redirecting the user? client side (javascript/angular?) or server side (express?) if client side you might be redirecting without the browser actually accepting the full header. if server...
@joepie91 If you notice most typical large applications like forums and others use a bounce page which is literally meant to setCookies from and then the browser is redirected (typically...
Sorry I was misunderstanding that this wasn't a login which if you don't have a cookie and you try to give a cookie in a redirect it doesn't really work...
@joepie91 Couldn't this be avoided by adding `req.session.save()` right after [line#30](https://gist.github.com/antishok/fb3d003d16eb72f672a7cc36401657d9#file-server-js-L30) I get that, that is annoying to have to do for all redirects but I feel like buffering the...
@adamkl is likely correct, if you have not set [saveUninitialized](https://github.com/expressjs/session#saveuninitialized) to false, or otherwise avoided the liveness and readiness checks then kubernetes just checking to see if your node application...