ac5826daca
Add expiration and creation times to sessions
...
Check expiration time when fetching sessions from cookies
2017-11-19 06:36:52 -05:00
216d413c15
Ensure we don't have duplicate session secrets
2017-11-18 21:20:23 -05:00
5a6be5a07b
Stop using form elements for API
...
Just send the JSON as the request body
2017-11-13 20:48:19 -05:00
507868b7a5
Begin move away from using http.ServeMux
2017-11-12 20:17:27 -05:00
2ff1f47432
Remove duplicate *Tx versions of database access methods
...
Simplify naming to remove "Tx" now that all handlers only have access to
transactions anyway, and always use "tx" as the name of the variable
representing the SQL transactions (to make it less likely to cause
confusion with monetary transactions).
2017-10-14 19:41:13 -04:00
4e53a5e59c
Use SQL transactions for the entirety of every request
2017-10-14 14:20:50 -04:00
e781e9861b
sessions: Return deletion errors to user
2017-10-11 05:49:08 -04:00
8f0f64ae53
Add tests for users and sessions
...
Split out common test infrastructure from security_templates_test, make
tests HTTPS, use the http.Client provided by httptest
2017-10-07 06:21:05 -04:00
d0a5980b85
First pass at reorganizing go code into sub-packages
2017-10-04 19:35:59 -04:00
