Sebastian Krüger dcf2fbd3d4 feat: enhance session security and freshness ...

- Sliding expiration: reset 24h TTL on every Redis session access
- SameSite=Strict on login and logout cookies (was Lax)
- Secure flag on logout cookie in production (was missing)
- Re-fetch user from DB on every request in buildContext so role/avatar/
  admin changes take effect immediately without requiring re-login

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-07 11:10:01 +01:00

..

backend

feat: enhance session security and freshness

2026-03-07 11:10:01 +01:00

buttplug

style: apply prettier formatting to all files

2026-03-04 22:27:54 +01:00

frontend

fix: add adminGetVideo/adminGetArticle queries to fix 404 on edit pages

2026-03-07 11:05:21 +01:00

types

fix: restore admin role in User type, use image logo

2026-03-06 18:04:49 +01:00