Auto-extend session cookie every 30 minutes

2025-06-05 21:59:27 +02:00 · 2025-02-19 23:42:28 +02:00
parent 380bd4ef4b
commit 3d8a897c19
2 changed files with 33 additions and 1 deletions
--- a/public/scripts/user.js
+++ b/public/scripts/user.js
@ -9,6 +9,9 @@ import { ensureImageFormatSupported, getBase64Async, humanFileSize } from './uti
 export let currentUser = null;
 export let accountsEnabled = false;
 // Extend the session every 30 minutes
 const SESSION_EXTEND_INTERVAL = 30 * 60 * 1000;
 /**
 * Enable or disable user account controls in the UI.
 * @param {boolean} isEnabled User account controls enabled
@ -894,6 +897,24 @@ async function slugify(text) {
    }
 }
 /**
 * Pings the server to extend the user session.
 */
 async function extendUserSession() {
    try {
        const response = await fetch('/api/ping?extend=1', {
            method: 'GET',
            headers: getRequestHeaders(),
        });
        if (!response.ok) {
            throw new Error('Ping did not succeed', { cause: response.status });
        }
    } catch (error) {
        console.error('Failed to extend user session', error);
    }
 }
 jQuery(() => {
    $('#logout_button').on('click', () => {
        logout();
@ -904,4 +925,9 @@ jQuery(() => {
    $('#account_button').on('click', () => {
        openUserProfile();
    });
    setInterval(async () => {
        if (currentUser) {
            await extendUserSession();
        }
    }, SESSION_EXTEND_INTERVAL);
 });
--- a/server.js
+++ b/server.js
@ -556,7 +556,13 @@ app.use('/api/users', usersPublicRouter);
 // Everything below this line requires authentication
 app.use(requireLoginMiddleware);
-app.get('/api/ping', (_, response) => response.sendStatus(204));
+app.get('/api/ping', (request, response) => {
    if (request.query.extend && request.session) {
        request.session.touch = Date.now();
    }
    response.sendStatus(204);
 });
 // File uploads
 app.use(multer({ dest: uploadsPath, limits: { fieldSize: 10 * 1024 * 1024 } }).single('avatar'));