From 8981f3f266dc7b8a1a595c41487d97cacf26c2c5 Mon Sep 17 00:00:00 2001
From: dhuang612 <dhuang@madisoncollege.edu>
Date: Tue, 10 Sep 2019 17:22:37 -0400
Subject: [PATCH] added in express middleware to handle session

---
 package.json                  |  3 ++-
 server/config/server/index.js | 15 +++++++++------
 2 files changed, 11 insertions(+), 7 deletions(-)

diff --git a/package.json b/package.json
index 2fd13247..d0a4eba6 100644
--- a/package.json
+++ b/package.json
@@ -25,7 +25,7 @@
     "test:server:functional": "babel-tape-runner -r dotenv/config server/tests/**/*.func.js | node_modules/.bin/tap-spec",
     "test:client": "mocha --require tools/testClientSetup.js tools/testSetup.js \"client/**/*.spec.js\"",
     "test": "npm run test:client && npm run test:server",
-    "updateDB":"node_modules/.bin/sequelize db:migrate --env production"
+    "updateDB": "node_modules/.bin/sequelize db:migrate --env production"
   },
   "repository": {
     "type": "git",
@@ -49,6 +49,7 @@
     "connect-history-api-fallback": "^1.3.0",
     "connect-redis": "^3.3.0",
     "cookie-parser": "^1.4.3",
+    "cookie-session": "^1.3.3",
     "csv": "^1.1.0",
     "debug": "^2.6.8",
     "dompurify": "^0.9.0",
diff --git a/server/config/server/index.js b/server/config/server/index.js
index 3e7e5ab0..8e28c5c3 100644
--- a/server/config/server/index.js
+++ b/server/config/server/index.js
@@ -3,7 +3,7 @@ const path = require('path');
 const express = require('express');
 const passport = require('passport');
 const helmet = require('helmet');
-
+const cookieSession = require('cookie-session');
 const configureSequelize = require('./sequelize');
 const configureWebpackDevMiddleware = require('./webpack-dev-middleware');
 const configureRedis = require('./redis');
@@ -23,11 +23,7 @@ module.exports = () => {
   configureWebpackDevMiddleware(app);
 
   // Configure redis, receiving connections to client, subscriber and publisher
-  const {
-    client,
-    subscriber,
-    publisher,
-  } = configureRedis();
+  const { client, subscriber, publisher } = configureRedis();
 
   // Configure session handling with redis, through the client connection.
   const { sessionMiddleware } = configureSession(client);
@@ -42,6 +38,13 @@ module.exports = () => {
   app.use(passport.session()); // Use passport middleware for auth
   app.use(helmet()); // Implements various security tweaks to http response headers
 
+  app.use(
+    cookieSession({
+      maxAge: 30 * 24 * 60 * 60 * 1000,
+      keys: [process.env.COOKIE_SESSION]
+    })
+  );
+
   app.use('/public', express.static(path.join(__dirname, '../../../public'))); // Serve /public static files when unauth
   app.use('/dist', express.static(path.join(__dirname, '../../../dist'))); // Serve /dist static diles when auth