It sucks that Client-Sessions lib circumvents Cookies lib encryption, instead of integrating with it or that the documentation is not clear about what Cookie options can and cannot be used in conjunction with Session options. For instance, can't use the "signed" cookie option since Cookie has zero control over signing, and if a sap like me thinks i can toggle encryption, then a lot of head scratching will ensue.
It sucks that Client-Sessions lib circumvents Cookies lib encryption, instead of integrating with it or that the documentation is not clear about what Cookie options can and cannot be used in conjunction with Session options. For instance, can't use the "signed" cookie option since Cookie has zero control over signing, and if a sap like me thinks i can toggle encryption, then a lot of head scratching will ensue.
I know, I know, open up a pull request. ...sigh