fix: use max-age for all cookie expirations

Kevin Morrisrequested to merge
kevr/aurweb:unify-cookie-age into master

in addition, remove cookie expiration for AURREMEMBER -- we don't really care about a session time for this cookie, it merely acts as a flag given out on login to remember what the user selected

Signed-off-by: Kevin Morris kevr@0cost.org

Merge request reports