From 7f349d733812aaf75b3ed9379933fb1df0a8763b Mon Sep 17 00:00:00 2001
From: David Hoppenbrouwers <david@salt-inc.org>
Date: Mon, 24 Oct 2022 20:25:42 +0200
Subject: [PATCH] Make session cookie "permanent" (31 days)

This is to avoid being logged out unpredictably.
---
 main.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/main.py b/main.py
index 4a6ec54..20c0a62 100644
--- a/main.py
+++ b/main.py
@@ -110,6 +110,7 @@ def login():
             if password.verify(request.form['password'], hash):
                 flash('Logged in', 'success')
                 session['user_id'] = id
+                session.permanent = True
                 return redirect(url_for('index'))
         else:
             # Sleep to reduce effectiveness of bruteforce
@@ -730,6 +731,7 @@ def register_user(show_password):
             flash(s, 'success')
             uid, = uid
             session['user_id'] = uid
+            session.permanent = True
             return True
     return False