From d56bda4518586c3b0220c18445394f35ec121d84 Mon Sep 17 00:00:00 2001 From: Moritz Bunkus Date: Tue, 1 Dec 2020 09:49:10 +0100 Subject: [PATCH 1/1] =?utf8?q?HTTP-Header:=20Lebenszeit=20f=C3=BCr=20Sessi?= =?utf8?q?on-ID-Cookie=20setzen=20gefixt?= MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit Der Name des Parameters lautet `-expires`, nicht `-expire`. Außerdem den Timeout direkt aus `$::auth` lesen, um denselben Standardwert zu nehmen, falls der Timeout nicht in der Konfiguration gesetzt ist. --- SL/Form.pm | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/SL/Form.pm b/SL/Form.pm index 46c52cb91..b8670ca41 100644 --- a/SL/Form.pm +++ b/SL/Form.pm @@ -382,11 +382,11 @@ sub create_http_response { my $session_cookie_value = $main::auth->get_session_id(); if ($session_cookie_value) { - $session_cookie = $cgi->cookie('-name' => $main::auth->get_session_cookie_name(), - '-value' => $session_cookie_value, - '-path' => $uri->path, - '-expire' => '+' . ($::lx_office_conf{authentication}->{session_timeout} // 60) . 'm', - '-secure' => $::request->is_https); + $session_cookie = $cgi->cookie('-name' => $main::auth->get_session_cookie_name(), + '-value' => $session_cookie_value, + '-path' => $uri->path, + '-expires' => '+' . $::auth->{session_timeout} . 'm', + '-secure' => $::request->is_https); } } -- 2.20.1