feat: add an env param "InSecure" to allow non-https deploy

JohnathanLin · JohnathanLin · commit 27eb1005568d · 2024-08-01T12:48:55.000+08:00
diff --git a/.env b/.env
@@ -7,3 +7,6 @@ PASSWORD="123"
 
 # Path to store sqlite DB file
 DB="fusion.db"
+
+# Allow non-https request
+INSECURE=true
diff --git a/api/session.go b/api/session.go
@@ -25,6 +25,13 @@ func (s Session) Create(c echo.Context) error {
 	}
 
 	sess, _ := session.Get("login", c)
+
+	//使用非https请求时，为保证Set-Cookie能正常生效，对Option进行特殊设置
+	if conf.Conf.InSecure {
+		sess.Options.Secure = false
+		sess.Options.SameSite = http.SameSiteDefaultMode
+	}
+
 	sess.Values["password"] = conf.Conf.Password
 	if err := sess.Save(c.Request(), c.Response()); err != nil {
 		return c.NoContent(http.StatusInternalServerError)
diff --git a/conf/conf.go b/conf/conf.go
@@ -13,6 +13,7 @@ var Conf struct {
 	Port     int    `mapstructure:"PORT"`
 	Password string `mapstructure:"PASSWORD"`
 	DB       string
+	InSecure bool `mapstructure:"INSECURE"`
 }
 
 func Load() {

Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@ var Conf struct {`
`13`	`13`	Port int `mapstructure:"PORT"`
`14`	`14`	Password string `mapstructure:"PASSWORD"`
`15`	`15`	`DB string`
	`16`	+ InSecure bool `mapstructure:"INSECURE"`
`16`	`17`	`}`
`17`	`18`
`18`	`19`	`func Load() {`