这是我的代码:
const express = require('express')
const session = require('express-session')
const compression = require('compression')
const sessionOptions = {
secret: '123',
name: 'test',
resave: true,
saveUninitialized: false,
rolling: true,
cookie: {
httpOnly: true,
maxAge: 1000 * 1800, // 30min
secure: true
}
}
const app = express()
app.use(session(sessionOptions))
app.use(compression())
app.use(express.json())
app.use(express.urlencoded({ extended: false }))
app.get('/', (req, res) => {
console.log(req.session)
res.json({
id: req.sessionID,
data: req.session.data
})
})
app.get('/login', (req, res) => {
req.session.data = 'asdasdasdasd'
res.end(req.sessionID)
})
app.listen(3000, () => {
console.log(`Server running at http://127.0.0.1:3000`)
})
然后我访问了
//login/{
"id": "8Z9bb5B6lATMe1sAIT_8QgY07YvOlr8P"
}
服务器的输出是:
Session {
cookie: {
path: '/',
_expires: 2023-12-28T06:35:36.057Z,
originalMaxAge: 1800000,
httpOnly: true,
secure: true
}
}
我检查了浏览器控制台的网络面板,发现
Set-Cookiereq.session我只是想实现利用session记录用户登录状态的功能。
我是不是哪里写错了?虚心求教,不胜感激!
我检查了服务器控制台输出、浏览器开发工具请求消息,并使用Wireshark爬取HTTP请求消息。希望有人能告诉我
express-session这是一个很有趣的问题,让我开怀大笑。在
express-sessionsessionOptions.cookie.securetrue