outposts/proxy: fix session not expiring correctly due to miscalculation

closes #1976

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

internal/outpost/proxyv2/application/session.go

@@ -19,11 +19,13 @@ func (a *Application) getStore(p api.ProxyOutpostConfig) sessions.Store {
 		if err != nil {
 			panic(err)
 		}
-		rs.SetMaxLength(math.MaxInt64)
+		rs.SetMaxLength(math.MaxInt)
 		if p.TokenValidity.IsSet() {
 			t := p.TokenValidity.Get()
 			// Add one to the validity to ensure we don't have a session with indefinite length
-			rs.Options.MaxAge = int(*t) + 1
+			rs.SetMaxAge(int(*t) + 1)
+		} else {
+			rs.SetMaxAge(0)
 		}
 		rs.Options.Domain = *p.CookieDomain
 		a.log.Info("using redis session backend")
@@ -31,19 +33,21 @@ func (a *Application) getStore(p api.ProxyOutpostConfig) sessions.Store {
 	} else {
 		dir := os.TempDir()
 		cs := sessions.NewFilesystemStore(dir, []byte(*p.CookieSecret))
-		cs.Options.Domain = *p.CookieDomain
 		// https://github.com/markbates/goth/commit/7276be0fdf719ddff753f3574ef0f967e4a5a5f7
 		// set the maxLength of the cookies stored on the disk to a larger number to prevent issues with:
 		// securecookie: the value is too long
 		// when using OpenID Connect , since this can contain a large amount of extra information in the id_token
 
 		// Note, when using the FilesystemStore only the session.ID is written to a browser cookie, so this is explicit for the storage on disk
-		cs.MaxLength(math.MaxInt64)
+		cs.MaxLength(math.MaxInt)
 		if p.TokenValidity.IsSet() {
 			t := p.TokenValidity.Get()
 			// Add one to the validity to ensure we don't have a session with indefinite length
-			cs.Options.MaxAge = int(*t) + 1
+			cs.MaxAge(int(*t) + 1)
+		} else {
+			cs.MaxAge(0)
 		}
+		cs.Options.Domain = *p.CookieDomain
 		a.log.WithField("dir", dir).Info("using filesystem session backend")
 		store = cs
 	}