Implemented storage of authentication token in database and cookies (latter are isolated per domain)

This commit is contained in:
djpbessems
2019-01-28 11:48:05 +01:00
parent ef4c97a784
commit 0c8b672b41
4 changed files with 51 additions and 39 deletions

View File

@ -18,8 +18,6 @@ return (object) array(
// Specify the NetBios name of the domain; to allow users to log on with just their usernames.
],
'DomainNames' => ['*.subdomain.domain.{(tld1|tld2)}'],
'Sqlite' => [
'Path' => '../data/lucidAuth.sqlite.db'
// Relative path to the location where the database should be stored
@ -30,7 +28,7 @@ return (object) array(
'JWT' => [
'PrivateKey_base64' => '',
// A base64-encoded string of a random string (see https://www.base64encode.org/)
// A base64-encoded random (preferably long) string (see https://www.base64encode.org/)
'Algorithm' => [
'HS256',
]
@ -39,7 +37,11 @@ return (object) array(
'Session' => [
'Duration' => 2592000,
// In seconds (2592000 is equivalent to 30 days)
# 'CookiePrefix' => 'lucidAuth_'
'CookieDomains' => [
'domain1.tld' #, 'domain2.tld', 'subdomain.domain3.tld'
]
// Domain(s) that will be used to set cookie-domains to
// (multiple domains are allowed; remove the '#' above)
],
'Debug' => [