From 84c4e6e3bec6b577ef10332f50728b3ba967eebc Mon Sep 17 00:00:00 2001
From: Yohan Boniface <yb@enix.org>
Date: Sun, 24 Mar 2019 20:43:06 +0100
Subject: [PATCH] Add max_age to session cookie

---
 copanier/__init__.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/copanier/__init__.py b/copanier/__init__.py
index 4d9ffe5..b2916c6 100644
--- a/copanier/__init__.py
+++ b/copanier/__init__.py
@@ -144,7 +144,9 @@ async def set_sesame(request, response, token):
         response.message("Sésame invalide :(", status="error")
     else:
         response.message("Yay! Le sésame a fonctionné. Bienvenue à bord! :)")
-        response.cookies.set(name="token", value=token)
+        response.cookies.set(
+            name="token", value=token, httponly=True, max_age=60 * 60 * 24 * 7
+        )
     response.redirect = "/"