local session sid time sig serverkey checksig
IFS=- read -r sid time sig <<-END
- $(COOKIE session)
+ $(POST session_key || COOKIE session)
END
serverkey="$(server_key)"
printf %s\\n "${sid}-${time}-${sig}"
}
- SESSION_ID="$(update_session)"
- SET_COOKIE 0 session="$SESSION_ID" Path=/ SameSite=Strict HttpOnly
- SESSION_ID="${SESSION_ID%%-*}"
+ SESSION_KEY="$(update_session)"
+ SET_COOKIE 0 session="$SESSION_KEY" Path=/ SameSite=Strict HttpOnly
+ SESSION_ID="${SESSION_KEY%%-*}"