Use https link and secure cookie when activated

author: Joris 2016-03-31 18:45:36 +0200
committer: Joris 2016-03-31 18:46:23 +0200
commit: 01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715 (patch)
tree: 5a81013be23c3f368fc7e6e1a0a41008a269d0fc /src/server/Controller/Index.hs
parent: 84f53fac431df20afd54817cca14260f1202e9ff (diff)
download: budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.tar.gz
budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.tar.bz2
budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.zip
1 files changed, 3 insertions, 5 deletions
diff --git a/src/server/Controller/Index.hs b/src/server/Controller/Index.hs
index f84f945..1e1f942 100644
--- a/src/server/Controller/Index.hs
+++ b/src/server/Controller/Index.hs
@@ -69,7 +69,7 @@ validateSignIn conf textToken = do
                     then
                       return . Left $ SignInExpired
                     else do
-                      LoginSession.put (signInToken . entityVal $ signInValue)
+                      LoginSession.put conf (signInToken . entityVal $ signInValue)
                       mbUser <- liftIO . runDb $ do
                         signInTokenToUsed . entityKey $ signInValue
                         getUser . signInEmail . entityVal $ signInValue
@@ -86,7 +86,5 @@ getLoggedUser = do
     Just token -> do
       liftIO . runDb . getUserFromToken $ token
 
-signOut :: ActionM ()
-signOut = do
-  LoginSession.delete
-  status ok200
+signOut :: Conf -> ActionM ()
+signOut conf = LoginSession.delete conf >> status ok200
author	Joris	2016-03-31 18:45:36 +0200
committer	Joris	2016-03-31 18:46:23 +0200
commit	01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715 (patch)
tree	5a81013be23c3f368fc7e6e1a0a41008a269d0fc /src/server/Controller/Index.hs
parent	84f53fac431df20afd54817cca14260f1202e9ff (diff)
download	budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.tar.gz budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.tar.bz2 budget-01e4ce0fa7c369996ec4ef3a033d16d6fa0eb715.zip