Change documentation a little bit, and fix one bug.

2025-02-03 13:21:22 +02:00 · 2015-03-15 08:06:08 -07:00 · 2015-03-15 08:06:08 -07:00 · f93fb38181
commit f93fb38181
parent fb97394c7f
5 changed files with 7 additions and 4 deletions
--- a/auth/auth.go
+++ b/auth/auth.go
@ -1,3 +1,4 @@
+// Package auth implements password based user logins.
 package auth

 import (
--- a/confirm/confirm.go
+++ b/confirm/confirm.go
@ -1,4 +1,4 @@
-// Package confirm implements user confirming after N bad sign-in attempts.
+// Package confirm implements confirmation of user registration via e-mail
 package confirm

 import (
--- a/oauth2/oauth2.go
+++ b/oauth2/oauth2.go
@ -169,8 +169,9 @@ func oauthCallback(ctx *authboss.Context, w http.ResponseWriter, r *http.Request
 		return err
 	}

-	// Log user in
+	// Fully log user in
 	ctx.SessionStorer.Put(authboss.SessionKey, fmt.Sprintf("%s;%s", uid, provider))
+	ctx.SessionStorer.Del(authboss.SessionHalfAuthKey)

 	if err = authboss.Cfg.Callbacks.FireAfter(authboss.EventOAuth, ctx); err != nil {
 		return nil
--- a/recover/recover.go
+++ b/recover/recover.go
@ -1,3 +1,4 @@
+// Package recover implements password reset via e-mail.
 package recover

 import (
--- a/remember/remember.go
+++ b/remember/remember.go
@ -1,5 +1,5 @@
-// Package remember implements persistent logins through (typically) cookie session
-// storages. The SessionStorer implementation must be fully secure either over https
+// Package remember implements persistent logins through the cookie storer.
+// The ClientStorer implementation must be fully secure either over https
 // or using signed cookies or it is easily exploitable.
 package remember