From 0e65ba86a1f7f1e0c991baad04df41eae40c1dda Mon Sep 17 00:00:00 2001
From: Derek Holloway <derek@mistox.com>
Date: Tue, 29 Jul 2025 18:04:04 -0700
Subject: [PATCH] Handle sessions inside the JWT

---
 .../Controllers/MistoxControllerBase.cs       | 25 ++++++-------------
 1 file changed, 8 insertions(+), 17 deletions(-)

diff --git a/src/Server/Controllers/MistoxControllerBase.cs b/src/Server/Controllers/MistoxControllerBase.cs
index 818c994..d9c07b6 100644
--- a/src/Server/Controllers/MistoxControllerBase.cs
+++ b/src/Server/Controllers/MistoxControllerBase.cs
@@ -14,23 +14,14 @@ namespace Auth.Controllers {
             _databaseService = databaseService;
         }
 
-        public static void SignIn(HttpResponse Response, bool StayLoggedIn, string jwt) {
-            if (StayLoggedIn) {
-                // Stay logged in cookie
-                Response.Cookies.Append(AuthJWT.TokenName, jwt, new CookieOptions {
-                    Secure = true,
-                    HttpOnly = true,
-                    SameSite = SameSiteMode.Strict,
-                    Expires = DateTime.UtcNow.AddDays(7)
-                });
-            } else {
-                // Session cookie
-                Response.Cookies.Append(AuthJWT.TokenName, jwt, new CookieOptions {
-                    Secure = true,
-                    HttpOnly = true,
-                    SameSite = SameSiteMode.Strict,
-                });
-            }
+        public static void SignIn(HttpResponse Response, string jwt) {
+            // Stay logged in cookie
+            Response.Cookies.Append(AuthJWT.TokenName, jwt, new CookieOptions {
+                Secure = true,
+                HttpOnly = true,
+                SameSite = SameSiteMode.Strict,
+                Expires = DateTime.UtcNow.AddDays(7)
+            });
         }
 
         public static void SignOut(HttpResponse Response) {