WebSVN – RepoView – Diff – /trunk/CGI/auth/cookie.c

-/* $Id: cookie.c 5 2024-08-20 22:43:56Z nishi $ */
+/* $Id: cookie.c 6 2024-08-21 00:44:17Z nishi $ */
 #include "rv_auth.h"
 #include "rv_util.h"
 #include "rv_db.h"
 char* rv_logged_in(void) {
 	int i;
 	for(i = 0; cookie_entries[i] != NULL; i++) {
 		if(strcmp(cookie_entries[i]->key, "token") == 0) {
-			return rv_who_has_token(cookie_entries[i]->value);
+			char* who = rv_who_has_token(cookie_entries[i]->value);
+			if(who == NULL) {
+				printf("Set-Cookie: token=; HttpOnly; Expires=0; SameSite=Strict\r\n");
+			}
+			return who;
 			break;
+		}
+	}
 	return NULL;
+}
 void rv_save_login(const char* username) {
 	char* token = rv_new_token(username);
-	printf("Set-Cookie: token=%s; HttpOnly\r\n", token);
+	printf("Set-Cookie: token=%s; HttpOnly; SameSite=Strict\r\n", token);
 	free(token);
+}
 void rv_init_auth(void) { parse_cookie(); }

Subversion Repositories RepoView