Set the session and cookie expiration to the mod_session SessionMaxAge
expiry time, if it is shorter than the credential lifetime.
Signed-off-by: Matt Rogers <mrogers@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Closes #82
gsessdata.established = mc->established?1:0;
gsessdata.delegated = mc->delegated?1:0;
+
+ if (sess->expiry != 0) {
+ mc->expiration = mc->expiration < apr_time_sec(sess->expiry) ?
+ mc->expiration : apr_time_sec(sess->expiry);
+ }
gsessdata.expiration = mc->expiration;
+
if (OCTET_STRING_fromString(&gsessdata.username, mc->user_name) != 0)
goto done;
if (OCTET_STRING_fromString(&gsessdata.gssname, mc->gss_name) != 0)