Chore: solved some todos

handlers/middleware.go

@@ -26,9 +26,7 @@ func LogRequests(next http.Handler) http.Handler {
 
 func GetSession(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		// TODO: move
-		cookieName := "session_token"
-		sessionCookie, err := r.Cookie(cookieName)
+		sessionCookie, err := r.Cookie(models.AuthCookie)
 		if err != nil {
 			msg := "auth failed; failed to get session token from cookies"
 			log.Debug(msg, "error", err)
@@ -54,7 +52,7 @@ func GetSession(next http.Handler) http.Handler {
 		sessionToken := cookieValue[sha256.Size:]
 		//verify signature
 		mac := hmac.New(sha256.New, []byte(cfg.CookieSecret))
-		mac.Write([]byte(cookieName))
+		mac.Write([]byte(models.AuthCookie))
 		mac.Write([]byte(sessionToken))
 		expectedSignature := mac.Sum(nil)
 		if !hmac.Equal([]byte(signature), expectedSignature) {