1
0
Fork 0

web - fix login timeout

This commit is contained in:
Ruben Meyer 2021-08-15 14:30:22 +02:00
parent 5457ff3f05
commit 8ed3d8cbf5
Signed by: rxbn_
GPG Key ID: BE3BF898BE352FE2
2 changed files with 11 additions and 9 deletions

View File

@ -100,6 +100,17 @@ methods.start = () => {
} }
app.use(session_handler(session_options)); app.use(session_handler(session_options));
// login timeout, clear on all requests
app.use((req, res, next) => {
if(req.session && req.session.user && req.session.user.login_timeout) {
if(Date.now() > req.session.user.login_timeout + cfg.web.loginTimeout * 1000) {
res.clearCookie('RememberMe');
req.session.destroy();
}
}
next();
})
// web routes // web routes
let mRoutes = require(global['__dirname']+'/bin/web/routes/static'); let mRoutes = require(global['__dirname']+'/bin/web/routes/static');
let mainRoutes = await mRoutes.getRoutes(); let mainRoutes = await mRoutes.getRoutes();

View File

@ -27,15 +27,6 @@ module.exports = {
})); }));
} }
if(Date.now() > req.session.user.loginTimeout + cfg.web.loginTimeout) {
res.clearCookie('RememberMe');
req.session.destroy();
return res.type('json').status(401).end(JSON.stringify({
status: 401,
message: 'msg.auth.login.failed'
}));
}
let mfa = sanitize(req.body.mfa); let mfa = sanitize(req.body.mfa);
user = await db.getUser(req.session.user.id); user = await db.getUser(req.session.user.id);