fix: improve session handling for non-base64 encoded session secrets

2025-09-17 17:16:38 +08:00 · 2024-12-20 05:56:35 +00:00 · 2024-12-20 05:56:35 +00:00 · 524606c4ae
commit 524606c4ae
parent 09bfd61f2e
1 changed files with 5 additions and 4 deletions
--- a/main.go
+++ b/main.go
@ -104,11 +104,12 @@ func main() {
 	sessionSecret, err := base64.StdEncoding.DecodeString(config.SessionSecret)
 	if err != nil {
 		logger.SysLog("session secret is not base64 encoded, using raw value instead")
-		sessionSecret = []byte(config.SessionSecret)
-	}
-
+		store := cookie.NewStore([]byte(config.SessionSecret))
+		server.Use(sessions.Sessions("session", store))
+	} else {
 		store := cookie.NewStore(sessionSecret, sessionSecret)
 		server.Use(sessions.Sessions("session", store))
+	}

 	router.SetRouter(server, buildFS)
 	var port = os.Getenv("PORT")