coop/federation
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Set sso_hint cookie on login, clear on logout
Some checks failed
Build and Deploy / build-and-deploy (push) Has been cancelled
Details

Browse Source 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
giles
2026-02-23 11:23:31 +00:00
parent f3737b2471
commit c7618b8a65
1 changed files with 10 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
bp/auth/routes.py
View File

@@ -196,11 +196,19 @@ def register(url_prefix="/auth"):
qsession[SESSION_USER_KEY] = user_id qsession[SESSION_USER_KEY] = user_id
redirect_url = pop_login_redirect_target() redirect_url = pop_login_redirect_target()
return redirect(redirect_url, 303) resp = redirect(redirect_url, 303)
resp.set_cookie(
"sso_hint", "1",
domain=".rose-ash.com", max_age=30 * 24 * 3600,
secure=True, samesite="Lax", httponly=True,
)
return resp
@auth_bp.post("/logout/") @auth_bp.post("/logout/")
async def logout(): async def logout():
qsession.pop(SESSION_USER_KEY, None) qsession.pop(SESSION_USER_KEY, None)
return redirect(federation_url("/")) resp = redirect(federation_url("/"))
resp.delete_cookie("sso_hint", domain=".rose-ash.com", path="/")
return resp
return auth_bp return auth_bp