security

2024-05-19 23:57:13 +02:00 · 2024-05-19 23:57:13 +02:00 · ffbd48acfd
commit ffbd48acfd
parent 57423aaedf
1 changed files with 6 additions and 5 deletions
--- a/api/handlers/authHandler.go
+++ b/api/handlers/authHandler.go
@ -8,6 +8,7 @@ import (
 	"portfolio/api/service/jwt"
 	"portfolio/database/ent"
 	"portfolio/database/query"
 	"time"
 )
 func Login(w http.ResponseWriter, r *http.Request) {
@ -41,10 +42,10 @@ func Login(w http.ResponseWriter, r *http.Request) {
 			cookie := &http.Cookie{Name: "jwt",
 				Value:    jwtToken,
-				//HttpOnly: true,
+				HttpOnly: true,
-				//Secure:   true,
+				Secure:   true,
-				//SameSite: http.SameSiteNoneMode,
+				SameSite: http.SameSiteStrictMode,
-				//Expires:  time.Now().Add(24 * time.Hour),
+				Expires:  time.Now().Add(24 * time.Hour),
 			}
 			http.SetCookie(w, cookie)