cookie configuration

Femto.Api/Auth/SessionAuthenticationHandler.cs

@@ -15,7 +15,8 @@ internal class SessionAuthenticationHandler(
     ILoggerFactory logger,
     UrlEncoder encoder,
     IAuthModule authModule,
-    CurrentUserContext currentUserContext
+    CurrentUserContext currentUserContext,
+    IOptions<CookieSettings> cookieOptions
 ) : AuthenticationHandler<AuthenticationSchemeOptions>(options, logger, encoder)
 {
     protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
@@ -38,7 +39,7 @@ internal class SessionAuthenticationHandler(
             var identity = new ClaimsIdentity(claims, this.Scheme.Name);
             var principal = new ClaimsPrincipal(identity);
 
-            this.Context.SetSession(result.Session);
+            this.Context.SetSession(result.Session, cookieOptions.Value);
             currentUserContext.CurrentUser = new CurrentUser(result.UserId, result.Username);
 
             return AuthenticateResult.Success(