Is it possible to encrypt cookies without using a jar? #132
Comments
|
This is not possible with the existing API, though it wouldn't be difficult to add this functionality. What do you want to do with the |
|
Yes I use I also do it in reverse to validate the cookie: let mut jar = CookieJar::new();
jar.add(Cookie::new("my_session", cookie2));
let cookie = jar.private(&key)
.get("my_session")
.map(|c| c.value().to_string()); |
|
I'd happily accept a PR that adds this functionality in the form of |
|
Closing due to inactivity. Still happy to accept a PR. |
tp971
added a commit
to tp971/cookie-rs
that referenced
this issue
Oct 16, 2024
These methods allow encrypting/decrypting and signing/verifying cookies without using a `PrivateJar` or `SignedJar`. Resolves rwf2#132.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I don't think I need to store cookies. I guess the jar is useful to revoke cookies.
In my case I think I would just prefer not storing them and rotate the key from time to time.
Is this possible?
The text was updated successfully, but these errors were encountered: