Clarify that max-age is not set by default

elixir-plug / plug

Compose web applications with functions

https://hex.pm/packages/plug

Other

2.84k stars 582 forks source link

Clarify that max-age is not set by default #1128

Closed adamu closed 1 year ago

adamu commented 1 year ago

I was a bit confused by this statement:

By default a signed or encrypted cookie is only valid for a day, unless a :max_age is specified.

On investigation, this is talking about the validity of the signature, not of the cookie itself. I attempted to clarify that :max_age of the cookie is unset by default, which produces a session cookie.

josevalim commented 1 year ago

:green_heart: :blue_heart: :purple_heart: :yellow_heart: :heart: