New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Problem using with passport 0.6.0: session.regenerate is not a function #166
Comments
Hi @showaltb sorry about that! I took a look and it appears regenerate is meant to generate a new session ID for a session. But this module stores the session in the cookie directly, no session ID. I'm not sure what a regenerate would actually do if added to this module, though. Also adding something to |
Yea, I thought about that too, but it seems like dummy methods would be misleading and then not actually perform what is intended. It likely makes more sense if, for example, Passport wants to use other modules that express-session, then it should probably have some sort of adapter so you can say what kind of session module you are using and it can use the appropriate APIs for that module. |
It also would mean that if dummy regenerate method was added, then there would no longer be a way for something like passport to detect that the session is not capable of regenerating the session id. |
Ok, filed with with Password: jaredhanson/passport#904 |
Cool. I don't want to close this for now as just want to see what is decided around. I forgot to mention as well that adding, even a dummy method, would end up as semver major, as it would now prevent the usage of the key |
Ok, so I'm going to close this issue has it has been sitting here for a few months. I looked over the linked Passport.js issue and it seems the question was answered in jaredhanson/passport#904 (comment) The author of Passport.js seems pretty clear that |
I've been using
cookie-session
in conjunction withpassport
successfully. Butpassport-0.6.0
now callssession.regenerate()
, which is part of the API forexpress-session
, but not forcookie-session
.I'm not sure exactly how all this works together, but should
regenerate()
be added tocookie-session
or shouldpassport
be checking for existence before attempting to use it?The text was updated successfully, but these errors were encountered: