Browse Source

Updated session cookie params

addeed more configuration params for
IDP cookie session. also set default value
for lifetime from 120 to 1440 minutes as
requested by Jimmy McArthur.

Change-Id: Iddca85712c98f88e11b2c872aaf1911bd6263c39
Sebastian Marcet 1 year ago
parent
commit
e0374d97e6
2 changed files with 16 additions and 1 deletions
  1. 9
    1
      manifests/init.pp
  2. 7
    0
      templates/lv5/.env.erb

+ 9
- 1
manifests/init.pp View File

@@ -76,7 +76,15 @@ class openstackid (
76 76
   $assets_base_url = 'https://www.openstack.org/',
77 77
   $cache_driver = 'redis',
78 78
   $session_driver = 'redis',
79
-  $session_cookie_secure = false,
79
+  # on minutes
80
+  $session_lifetime = 1440,
81
+  $session_encrypt = true,
82
+  $session_expire_on_close = false,
83
+  $session_cookie_name = 'openstackid_s',
84
+  $session_cookie_path = '/',
85
+  $session_cookie_domain = $::fqdn,
86
+  $session_cookie_secure = true,
87
+  $session_cookie_http_only = true,
80 88
 ) {
81 89
 
82 90
   # php packages needed for openid server

+ 7
- 0
templates/lv5/.env.erb View File

@@ -26,7 +26,14 @@ REDIS_PASSWORD="<%= @redis_password %>"
26 26
 CACHE_DRIVER="<%= @cache_driver %>"
27 27
 
28 28
 SESSION_DRIVER="<%= @session_driver %>"
29
+SESSION_LIFETIME=<%= @session_lifetime %>
30
+SESSION_ENCRYPT=<%= @session_encrypt %>
31
+SESSION_EXPIRE_ON_CLOSE=<%= @session_expire_on_close %>
32
+SESSION_COOKIE_NAME=<%= @session_cookie_name %>
33
+SESSION_COOKIE_PATH=<%= @session_cookie_path %>
34
+SESSION_COOKIE_DOMAIN=<%= @session_cookie_domain %>
29 35
 SESSION_COOKIE_SECURE=<%= @session_cookie_secure %>
36
+SESSION_COOKIE_HTTP_ONLY<%= @session_cookie_http_only %>
30 37
 
31 38
 MAIL_DRIVER=<%= @email_driver %>
32 39
 MAIL_HOST=<%= @email_smtp_server %>

Loading…
Cancel
Save