You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The session "parser" in lib/user is just: this.user.session = nowjs.sessions[unescape(cookie)].
This doesn't work with signed cookies (or if one implemented encrypted cookies) since the session id is not the cookie string value.
Possibly nowJS should allow tu use a user-defined function to extract the session id from the cookies. Alternatively one could pass the secret to nowjs so it can validate the cookie is correctly signed.
The text was updated successfully, but these errors were encountered:
The session "parser" in lib/user is just:
this.user.session = nowjs.sessions[unescape(cookie)].This doesn't work with signed cookies (or if one implemented encrypted cookies) since the session id is not the cookie string value.
Possibly nowJS should allow tu use a user-defined function to extract the session id from the cookies. Alternatively one could pass the secret to nowjs so it can validate the cookie is correctly signed.
The text was updated successfully, but these errors were encountered: