Negate established flag if session is expired.

If the session is expired, then set established to false to
force re-authentication.

Reviewed-by: Simo Sorce <simo@redhat.com>
Close #57

diff --git a/src/sessions.c b/src/sessions.c
index 70f39a2..1554d24 100644 (file)
--- a/src/sessions.c
+++ b/src/sessions.c
@@ -157,6 +157,7 @@ void mag_check_session(struct mag_req_cfg *cfg, struct mag_conn **conn)
     expiration = gsessdata->expiration;
     if (expiration < time(NULL)) {
         /* credentials fully expired, return nothing */
+        mc->established = false;
         goto done;
     }