mirror of
https://gitlab.com/openconnect/ocserv.git
synced 2026-03-13 14:58:07 +08:00
Simplified cookie handling
This change set eliminates the need for cryptographically authenticated cookies and relies on sec-module providing accurate information on the SID provided by the client.
This commit is contained in:
Nikos Mavrogiannopoulos
committed by
Nikos Mavrogiannopoulos
Nikos Mavrogiannopoulos
parent
88101dc9fd
commit
010257c6a2
@@ -308,12 +308,6 @@ ban-reset-time = 300
|
||||
# between different networks.
|
||||
cookie-timeout = 300
|
||||
|
||||
# Cookie rekey time (in seconds)
|
||||
# The time after which the key used to encrypt cookies will be
|
||||
# refreshed. After this time the previous key will also be valid
|
||||
# for verification until the next rotation cycle.
|
||||
cookie-rekey-time = 259200
|
||||
|
||||
# If this is enabled (not recommended) the cookies will stay
|
||||
# valid even after a user manually disconnects, and until they
|
||||
# expire. This may improve roaming with some broken clients.
|
||||
|
||||
Reference in New Issue
Block a user