Mercurial > hg > soundsoftware-site

diff app/controllers/.svn/text-base/account_controller.rb.svn-base @ 210:0579821a129a

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Update to Redmine trunk rev 4802
author Chris Cannam
date Tue, 08 Feb 2011 13:51:46 +0000
parents 1d32c0a0efbf
children
line wrap: on
line diff
--- a/app/controllers/.svn/text-base/account_controller.rb.svn-base	Wed Jan 19 15:04:22 2011 +0000
+++ b/app/controllers/.svn/text-base/account_controller.rb.svn-base	Tue Feb 08 13:51:46 2011 +0000
@@ -203,12 +203,24 @@
     self.logged_user = user
     # generate a key and set cookie if autologin
     if params[:autologin] && Setting.autologin?
-      token = Token.create(:user => user, :action => 'autologin')
-      cookies[:autologin] = { :value => token.value, :expires => 1.year.from_now }
+      set_autologin_cookie(user)
     end
     call_hook(:controller_account_success_authentication_after, {:user => user })
     redirect_back_or_default :controller => 'my', :action => 'page'
   end
+  
+  def set_autologin_cookie(user)
+    token = Token.create(:user => user, :action => 'autologin')
+    cookie_name = Redmine::Configuration['autologin_cookie_name'] || 'autologin'
+    cookie_options = {
+      :value => token.value,
+      :expires => 1.year.from_now,
+      :path => (Redmine::Configuration['autologin_cookie_path'] || '/'),
+      :secure => (Redmine::Configuration['autologin_cookie_secure'] ? true : false),
+      :httponly => true
+    }
+    cookies[cookie_name] = cookie_options
+  end
 
   # Onthefly creation failed, display the registration form to fill/fix attributes
   def onthefly_creation_failed(user, auth_source_options = { })