From 372cc3a2c7f07b26b3460a8e7e4af43475869d7a Mon Sep 17 00:00:00 2001
From: Julien Dessaux <julien.dessaux@adyxax.org>
Date: Fri, 18 Apr 2025 23:26:38 +0200
Subject: [PATCH] feat(webui): add sessions expiration

Closes #28
---
 pkg/model/session.go | 4 ++--
 pkg/webui/login.go   | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/pkg/model/session.go b/pkg/model/session.go
index fa88693..ac6da89 100644
--- a/pkg/model/session.go
+++ b/pkg/model/session.go
@@ -17,6 +17,6 @@ type Session struct {
 }
 
 func (session *Session) IsExpired() bool {
-	// TODO
-	return false
+	expires := session.Created.Add(12 * time.Hour) // 12 hours sessions
+	return time.Now().After(expires)
 }
diff --git a/pkg/webui/login.go b/pkg/webui/login.go
index 3bf3c03..a1925a9 100644
--- a/pkg/webui/login.go
+++ b/pkg/webui/login.go
@@ -86,7 +86,7 @@ func handleLoginPOST(db *database.DB) http.Handler {
 			Value:    sessionId,
 			Quoted:   false,
 			Path:     "/",
-			MaxAge:   8 * 3600, // 1 hour sessions
+			MaxAge:   12 * 3600, // 12 hours sessions
 			HttpOnly: true,
 			SameSite: http.SameSiteStrictMode,
 			Secure:   true,