Node.js module for authenticating with the Steam auth server. Allows for generating refresh tokens and web auth cookies for use with steam-user and other packages.
I know sessionid is just a csrf token.
But some web endpoints return sessionid to us for some reason.
For this reason, we should always check if the sessionid exists in the cookies, and if it doesn't, generate it ourselves.
Maybe it's better to always return sessionid (our generated or returned from web, if exists)?
As far as I know, sessionid is useful for steam-mobile too (not sure about steam-client, but steam-user return sessionid too), for these reasons - returning sessionid won't affect them.
I know sessionid is just a csrf token. But some web endpoints return sessionid to us for some reason. For this reason, we should always check if the sessionid exists in the cookies, and if it doesn't, generate it ourselves.
Maybe it's better to always return sessionid (our generated or returned from web, if exists)?
As far as I know, sessionid is useful for steam-mobile too (not sure about steam-client, but steam-user return sessionid too), for these reasons - returning sessionid won't affect them.