Duplicate Cookie/Header in response when sending an expired session and refresh token
kijanowski opened this issue · comments
kijanowski commented
The cookie/header is set twice, the first time through SessionDirectives.touchRequiredSession
and then again through SessionDirectives.setOneOffSessionSameTransport
.
Tried to address it via #27
but it's not fixed.
Marcin Kubala commented
Fixed in #62