Set cookie security using useHttps config option

2019-08-19 03:02:34 +02:00 · 2019-08-19 03:02:34 +02:00 · c2413ccfdd
parent 5f2127fb52
commit c2413ccfdd
3 changed files with 4 additions and 2 deletions
--- a/src/config.nim
+++ b/src/config.nim
@ -15,6 +15,7 @@ proc getConfig*(path: string): Config =
  Config(
    address: cfg.get("Server", "address", "0.0.0.0"),
    port: cfg.get("Server", "port", 8080),
+    useHttps: cfg.get("Server", "https", true),
    title: cfg.get("Server", "title", "Nitter"),
    staticDir: cfg.get("Server", "staticDir", "./public"),

--- a/src/nitter.nim
+++ b/src/nitter.nim
@ -89,13 +89,13 @@ routes:
  post "/saveprefs":
    var prefs = cookiePrefs()
    genUpdatePrefs()
-    setCookie("preferences", $prefs.id, daysForward(360), httpOnly=true, secure=true)
+    setCookie("preferences", $prefs.id, daysForward(360), httpOnly=true, secure=cfg.useHttps)
    redirect("/")

  post "/resetprefs":
    var prefs = cookiePrefs()
    resetPrefs(prefs)
-    setCookie("preferences", $prefs.id, daysForward(360), httpOnly=true, secure=true)
+    setCookie("preferences", $prefs.id, daysForward(360), httpOnly=true, secure=cfg.useHttps)
    redirect("/settings")

  get "/settings":
--- a/src/types.nim
+++ b/src/types.nim
@ -167,6 +167,7 @@ type
  Config* = ref object
    address*: string
    port*: int
+    useHttps*: bool
    title*: string
    staticDir*: string
    cacheDir*: string