modo-rs 0.6.2

Rust web framework for small monolithic apps
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230

# modo::session

Database-backed HTTP session management for the modo framework.

Sessions are stored in a SQLite table (`sessions`) and identified by a
signed, opaque cookie. The middleware handles the full request/response
lifecycle: loading the session on the request path, validating the browser
fingerprint, flushing dirty data after the handler runs, and setting or
clearing the session cookie.

Requires the **`session`** feature flag (transitively enables `db`).

## Schema

The application must create `sessions` before running. The table must
contain all columns present in `SessionData`:

```sql
CREATE TABLE IF NOT EXISTS sessions (
    id             TEXT    NOT NULL PRIMARY KEY,
    token_hash     TEXT    NOT NULL UNIQUE,
    user_id        TEXT    NOT NULL,
    ip_address     TEXT    NOT NULL DEFAULT '',
    user_agent     TEXT    NOT NULL DEFAULT '',
    device_name    TEXT    NOT NULL DEFAULT '',
    device_type    TEXT    NOT NULL DEFAULT '',
    fingerprint    TEXT    NOT NULL DEFAULT '',
    data           TEXT    NOT NULL DEFAULT '{}',
    created_at     TEXT    NOT NULL,
    last_active_at TEXT    NOT NULL,
    expires_at     TEXT    NOT NULL
);
CREATE INDEX IF NOT EXISTS idx_sessions_user_id    ON sessions (user_id);
CREATE INDEX IF NOT EXISTS idx_sessions_expires_at ON sessions (expires_at);
```

## Configuration

`SessionConfig` is deserialised from the `session` key in `config.yaml`.
All fields are optional and fall back to the defaults shown below.

```yaml
session:
    session_ttl_secs: 2592000 # 30 days
    cookie_name: "_session"
    validate_fingerprint: true
    touch_interval_secs: 300 # 5 minutes
    max_sessions_per_user: 10

cookie:
    secret: "a-64-character-or-longer-secret-value-for-signing-cookies..."
    secure: true
    http_only: true
    same_site: "lax" # "lax" | "strict" | "none"
```

`trusted_proxies` is a top-level config field (not under `session`) consumed
by `ClientIpLayer` to resolve the real client IP before the session middleware
reads it.

## Usage

### Wiring the middleware

```rust,no_run
use modo::session::{self, SessionConfig, Store};
use modo::cookie::{CookieConfig, key_from_config};
use modo::db::Database;

async fn build_app(
    db: Database,
    session_cfg: SessionConfig,
    cookie_cfg: CookieConfig,
) -> modo::Result<axum::Router> {
    let key = key_from_config(&cookie_cfg)?;
    let store = Store::new(db, session_cfg);
    let session_layer = session::layer(store, &cookie_cfg, &key);

    let router = axum::Router::new()
        // .route(...)
        .layer(session_layer);

    Ok(router)
}
```

`ClientIpLayer` must be applied **before** `SessionLayer` so the correct
client IP is available when the session is loaded.

### Logging in

```rust,no_run
use modo::session::Session;
use axum::response::IntoResponse;

async fn login_handler(session: Session) -> impl IntoResponse {
    session
        .authenticate("user-ulid-here")
        .await
        .expect("authenticate failed");
    axum::http::StatusCode::OK
}
```

Use `authenticate_with` to store initial data alongside the session:

```rust,no_run
use modo::session::Session;
use serde_json::json;

async fn login_with_data(session: Session) {
    session
        .authenticate_with("user-ulid", json!({ "role": "admin" }))
        .await
        .unwrap();
}
```

### Reading and writing session data

```rust,no_run
use modo::session::Session;
use serde::{Deserialize, Serialize};

#[derive(Serialize, Deserialize)]
struct Cart {
    items: Vec<String>,
}

async fn handler(session: Session) -> modo::Result<()> {
    if !session.is_authenticated() {
        return Err(modo::Error::unauthorized("login required"));
    }

    // Read a typed value
    let cart: Option<Cart> = session.get("cart")?;

    // Write a value (flushed to DB after the handler returns)
    session.set("cart", &Cart { items: vec!["book".into()] })?;

    // Remove a key
    session.remove_key("cart");

    Ok(())
}
```

### Logging out

```rust,no_run
use modo::session::Session;

async fn logout(session: Session) -> modo::Result<()> {
    session.logout().await               // current session only
}

async fn logout_everywhere(session: Session) -> modo::Result<()> {
    session.logout_all().await           // all sessions for the user
}

async fn logout_other_devices(session: Session) -> modo::Result<()> {
    session.logout_other().await         // keep current, destroy others
}
```

### Session management endpoints

```rust,no_run
use modo::session::{Session, SessionData};

async fn list_sessions(session: Session) -> modo::Result<axum::Json<Vec<SessionData>>> {
    let sessions = session.list_my_sessions().await?;
    Ok(axum::Json(sessions))
}

async fn revoke_session(
    session: Session,
    axum::extract::Path(id): axum::extract::Path<String>,
) -> modo::Result<()> {
    session.revoke(&id).await
}
```

### Token rotation

Call `rotate` after privilege escalation to issue a fresh token while
keeping the existing session data:

```rust,no_run
use modo::session::Session;

async fn elevate(session: Session) -> modo::Result<()> {
    session.rotate().await
}
```

### Expired session cleanup

Schedule `Store::cleanup_expired` periodically (e.g. via a cron job) to
remove expired rows from the database:

```rust,no_run
use modo::session::Store;

async fn cleanup_job(store: Store) -> modo::Result<u64> {
    let deleted = store.cleanup_expired().await?;
    tracing::info!(deleted, "expired sessions removed");
    Ok(deleted)
}
```

## Key Types

| Type            | Purpose                                                       |
| --------------- | ------------------------------------------------------------- |
| `SessionConfig` | Deserialised session configuration (TTL, cookie name, limits) |
| `Session`       | Axum extractor; primary API for handlers                      |
| `SessionData`   | Snapshot of a session row returned from the database          |
| `SessionToken`  | Opaque 32-byte random token; redacted in `Debug`/`Display`    |
| `Store`         | Low-level SQLite store; use directly for background jobs      |
| `SessionLayer`  | Tower layer; apply to a `Router` to enable session support    |
| `layer`         | Convenience constructor for `SessionLayer`                    |

## Submodules

| Module        | Purpose                                                      |
| ------------- | ------------------------------------------------------------ |
| `device`      | User-agent parsing helpers (`parse_device_name`, `parse_device_type`) |
| `fingerprint` | Browser fingerprinting for session hijacking detection (`compute_fingerprint`) |
| `meta`        | Request metadata (`SessionMeta`, `header_str`) derived from headers |