DanielGSoftware
commented
1 year ago The expiration date is now hardcoded to 1 year, if a user would like to change this, he has no way of doing that. Perhaps it's a good idea to maybe add it to the config file or add a param to the leave method (with a default value).
Using config file in laravel-impersonate.php
/**
* The expiration date in minutes for the remember me token after leaving an impersonation.
* Default is 1 year.
*/
'remember_me_expiration' => 525600,ImpersonateManager.php
$this->app['cookie']->queue($session[0], $session[1], config('laravel-impersonate.remember_me_expiration'));Passing time through leave
// Changed line
public function leave(int $expireTime = 525600): bool
{
try {
$impersonated = $this->app['auth']->guard($this->getImpersonatorGuardUsingName())->user();
$impersonator = $this->findUserById($this->getImpersonatorId(), $this->getImpersonatorGuardName());
$this->app['auth']->guard($this->getCurrentAuthGuardName())->quietLogout();
$this->app['auth']->guard($this->getImpersonatorGuardName())->quietLogin($impersonator);
// Changed line
$this->extractAuthCookieFromSession($expireTime);
$this->clear();
} catch (\Exception $e) {
unset($e);
return false;
}
$this->app['events']->dispatch(new LeaveImpersonation($impersonator, $impersonated));
return true;
}
// Changed line
protected function extractAuthCookieFromSession(int $expireTime): void
{
if (!$session = $this->findByKeyInArray(session()->all(), static::REMEMBER_PREFIX)->first()) {
return;
}
// Changed line
$this->app['cookie']->queue($session[0], $session[1], $expireTime);
session()->forget($session);
}Would you have a preference?
Arne1303
drbyte
When you stop impersonating a user, the expire date of the remember token gets set to
session.This means that when you close the browser and the session ends, the remember me token is gone, and the user has to log in again (that is if the Laravel session expired). Setting the remember me token to a date will keep the remember token when the browser closes, and the user will still be logged in.