feat: create session cookie tied to access token

1 files changed, 36 insertions, 0 deletions

diff --git a/pkg/web/cookie/reset.go b/pkg/web/cookie/reset.go
new file mode 100644
index 0000000..1686343
--- /dev/null
+++ b/pkg/web/cookie/reset.go
@@ -0,0 +1,36 @@
+package cookie
+
+import (
+	"net/http"
+	"time"
+
+	"github.com/xlgmokha/x/pkg/env"
+)
+
+func Reset(name string) *http.Cookie {
+	return Clear(&http.Cookie{
+		Name: name,
+	})
+}
+
+func Expire(w http.ResponseWriter, r *http.Request, name string) {
+	cookie, err := r.Cookie(name)
+	if err != nil {
+		http.SetCookie(w, Reset(name))
+	} else {
+		Clear(cookie)
+		http.SetCookie(w, cookie)
+	}
+}
+
+func Clear(cookie *http.Cookie) *http.Cookie {
+	cookie.Value = ""
+	cookie.Expires = time.Unix(0, 0)
+	cookie.MaxAge = -1
+	cookie.Path = "/"
+	cookie.HttpOnly = true
+	cookie.Secure = true
+	cookie.SameSite = http.SameSiteNoneMode
+	cookie.Domain = env.Fetch("HOST", "localhost")
+	return cookie
+}