FIX: After SessionRegenerateID, beegosessionID cookie's secure flag is missing (#5007)

- Add cookie.Secure, cookie.Domain, cookie.SameSite
2022-07-04 21:37:03 +08:00 · 2022-07-04 21:37:03 +08:00 · a451f398a3
commit a451f398a3
parent 7d8a2592db
1 changed files with 3 additions and 0 deletions
--- a/session/session.go
+++ b/session/session.go
@ -328,6 +328,9 @@ func (manager *Manager) SessionRegenerateID(w http.ResponseWriter, r *http.Reque
 		cookie.Value = url.QueryEscape(sid)
 		cookie.HttpOnly = true
 		cookie.Path = "/"
+		cookie.Secure = manager.isSecure(r)
+		cookie.Domain = manager.config.Domain
+		cookie.SameSite = manager.config.CookieSameSite
 	}
 	if manager.config.CookieLifeTime > 0 {
 		cookie.MaxAge = manager.config.CookieLifeTime