From 942b9862d8fe2b2c659d63a8f6c5bc24e476e6b0 Mon Sep 17 00:00:00 2001
From: MHSanaei <ho3ein.sanaei@gmail.com>
Date: Tue, 25 Apr 2023 15:00:21 +0330
Subject: [feature] add login session timeout

Co-Authored-By: Alireza Ahmadi <alireza7@gmail.com>
---
 web/controller/index.go | 10 ++++++++++
 1 file changed, 10 insertions(+)

(limited to 'web/controller/index.go')

diff --git a/web/controller/index.go b/web/controller/index.go
index c19ee799..4776cefa 100644
--- a/web/controller/index.go
+++ b/web/controller/index.go
@@ -70,6 +70,16 @@ func (a *IndexController) login(c *gin.Context) {
 	} else {
 		logger.Infof("%s login success,Ip Address:%s\n", form.Username, getRemoteIp(c))
 		a.tgbot.UserLoginNotify(form.Username, getRemoteIp(c), timeStr, 1)
+		sessionMaxAge, err := a.settingService.GetSessionMaxAge()
+		if err != nil {
+			logger.Infof("Unable to get session's max age from DB")
+		}
+
+		err = session.SetMaxAge(c, sessionMaxAge*60)
+		if err != nil {
+			logger.Infof("Unable to set session's max age")
+		}
+
 	}
 
 	err = session.SetLoginUser(c, user)
-- 
cgit v1.2.3