Skip to content

Cookie being set on uninitialized session when saveUninitialized option is disabled but rolling option is enabled #239

Description

@JamesMGreene

Currently, the session cookie is being set for uninitialized sessions even when saveUninitialized option is disabled if the rolling option is enabled. This doesn't make any sense to me.

I do expect the rolling option to continually extend the expiration date with each new request, which is it's intended purpose. However, I do NOT expect that option to override the saveUnitialized option.

Use Case

  • I only want to maintain sessions for authenticated users, thus I set saveUnitialized to false.
  • I want to continually extend the expiration date of these authenticated user sessions upon receiving a new request [before the session naturally expires], thus I set rolling to true.
  • I am using a Session Store implementation that supports touch, thus I set resave to false.

Metadata

Metadata

Assignees

Labels

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions