From a856d66107087df5ba2d6e1726045f2dc35a99d5 Mon Sep 17 00:00:00 2001
From: To-om <toom@thehive-project.org>
Date: Wed, 3 Jul 2019 08:54:22 +0200
Subject: [PATCH] #90 Don't create session for initial user

---
 app/org/elastic4play/controllers/Authenticated.scala | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/org/elastic4play/controllers/Authenticated.scala b/app/org/elastic4play/controllers/Authenticated.scala
index add58fb..c396c6e 100644
--- a/app/org/elastic4play/controllers/Authenticated.scala
+++ b/app/org/elastic4play/controllers/Authenticated.scala
@@ -93,7 +93,7 @@ class Authenticated(
     * Cookie is signed by Play framework (it cannot be modified by user)
     */
   def setSessingUser(result: Result, authContext: AuthContext)(implicit request: RequestHeader): Result =
-    if (authContext.authMethod != "key")
+    if (authContext.authMethod != "key" && authContext.authMethod != "init")
       result.addingToSession(
         sessionUsername → authContext.userId,
         "expire"        → (now + maxSessionInactivity.toMillis).toString,