allow suppression of default session cookie

diff --git a/session.sh b/session.sh
index ca931fad9aa662ec338820bdc88be9f5018aba24..5b36ae032af4e818af91d4b73190a9f83614da15 100755 (executable)
--- a/session.sh
+++ b/session.sh
@@ -114,6 +114,11 @@ SESSION_VAR() {
   fi
 }
 
   fi
 }
 

+SESSION_COOKIE() {
+  SET_COOKIE 0 session="$SESSION_KEY" Path=/ SameSite=Strict HttpOnly
+}
+

 SESSION_KEY="$(update_session)"
 SESSION_KEY="$(update_session)"

-SET_COOKIE 0 session="$SESSION_KEY" Path=/ SameSite=Strict HttpOnly

 SESSION_ID="${SESSION_KEY%% *}"
 SESSION_ID="${SESSION_KEY%% *}"

+
+[ "$1" = nocookie ] || SESSION_COOKIE