package config

import (
	"net/http"

	"github.com/gin-contrib/sessions"
	"github.com/gin-contrib/sessions/cookie"
)

// InitSessionStore 初始化session存储
func InitSessionStore() sessions.Store {
	store := cookie.NewStore([]byte("secret"))
	store.Options(sessions.Options{
		MaxAge:   86400 * 7,
		HttpOnly: true,
		Secure:   false,                // 如果是HTTPS需要设为true
		SameSite: http.SameSiteLaxMode, // 允许跨站携带cookie
	})
	return store
}

// 退出登录时立即使客户端cookie过期
func GetLogoutSessionOptions() sessions.Options {
	return sessions.Options{
		Path:     "/",   // cookie的路径
		MaxAge:   -1,    // 立即使cookie过期
		Secure:   false, // 如果是HTTPS需要设为true
		HttpOnly: true,  // 防止JS访问
	}
}