//! Session authentication primitives.
use async_trait;
use Value;
use AuthError;
/// Abstracts validation of a browser session or session token.
/// Store for server-side session revocation.
///
/// The framework provides `SessionTokenSigner` for issuing and verifying
/// signed opaque session tokens. The consuming service implements this trait
/// to check whether a session id (`sid`) has been revoked before its natural
/// expiration.