fix: Session cookie option

nimil-jp · Nov 8, 2021 · e1ec0ce · e1ec0ce
1 parent 4ea31c8
commit e1ec0ce
Showing 1 changed file with 11 additions and 8 deletions.
diff --git a/http/middleware/session.go b/http/middleware/session.go
@@ -15,17 +15,20 @@ type SessionOption struct {
 
 func Session(name []string, secret string, option *SessionOption) gin.HandlerFunc {
 	var (
-		corsSecure   bool
-		corsSameSite http.SameSite
+		secure   bool
+		sameSite http.SameSite
 	)
 
 	switch gin.Mode() {
 	case gin.ReleaseMode:
-		corsSecure = true
-		corsSameSite = http.SameSiteStrictMode
+		secure = true
+		sameSite = http.SameSiteStrictMode
+	case gin.TestMode:
+		secure = true
+		sameSite = http.SameSiteNoneMode
 	case gin.DebugMode:
-		corsSecure = false
-		corsSameSite = http.SameSiteLaxMode
+		secure = false
+		sameSite = http.SameSiteLaxMode
 	}
 
 	var maxAge = time.Hour * 24 * 365
@@ -39,9 +42,9 @@ func Session(name []string, secret string, option *SessionOption) gin.HandlerFun
 		sessions.Options{
 			Path:     "/",
 			MaxAge:   int(maxAge),
-			Secure:   corsSecure,
+			Secure:   secure,
 			HttpOnly: true,
-			SameSite: corsSameSite,
+			SameSite: sameSite,
 		},
 	)
 	return sessions.SessionsMany(name, store)