wae-session 0.0.2

WAE Session - 会话管理,支持内存存储
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168

//! Session 中间件层
//!
//! 提供 Session 中间件实现,用于在请求处理过程中管理 Session。

use crate::{Session, SessionConfig, SessionStore};
use base64::{Engine, engine::general_purpose::URL_SAFE_NO_PAD};
use http::{Request, Response};
use http_body::Body;
use rand::Rng;
use std::{marker::PhantomData, sync::Arc};
use tower::{Layer, Service};

/// Session 中间件层
///
/// 用于在 tower 应用中添加 Session 支持。
#[derive(Debug, Clone)]
pub struct SessionLayer<S, ReqBody, ResBody>
where
    S: SessionStore,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    /// Session 存储
    store: S,
    /// Session 配置
    config: SessionConfig,
    /// 用于标记请求体类型
    _phantom: PhantomData<(ReqBody, ResBody)>,
}

impl<S, ReqBody, ResBody> SessionLayer<S, ReqBody, ResBody>
where
    S: SessionStore,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    /// 创建新的 Session 中间件层
    pub fn new(store: S, config: SessionConfig) -> Self {
        Self { store, config, _phantom: PhantomData }
    }

    /// 使用默认配置创建 Session 中间件层
    pub fn with_store(store: S) -> Self {
        Self::new(store, SessionConfig::default())
    }
}

impl<S, T, ReqBody, ResBody> Layer<T> for SessionLayer<S, ReqBody, ResBody>
where
    S: SessionStore,
    T: Service<Request<ReqBody>, Response = Response<ResBody>> + Clone + Send + 'static,
    T::Future: Send,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    type Service = SessionService<T, S, ReqBody, ResBody>;

    fn layer(&self, inner: T) -> Self::Service {
        SessionService { inner, store: self.store.clone(), config: self.config.clone(), _phantom: PhantomData }
    }
}

/// Session 服务
///
/// 用于处理 Session 的服务包装器。
#[derive(Debug, Clone)]
pub struct SessionService<T, S, ReqBody, ResBody>
where
    S: SessionStore,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    /// 内部服务
    inner: T,
    /// Session 存储
    store: S,
    /// Session 配置
    config: SessionConfig,
    /// 用于标记请求体类型
    _phantom: PhantomData<(ReqBody, ResBody)>,
}

impl<T, S, ReqBody, ResBody> SessionService<T, S, ReqBody, ResBody>
where
    S: SessionStore,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    /// 从请求中提取 Session ID
    fn extract_session_id<B>(&self, request: &Request<B>) -> Option<String> {
        let cookie_header = request.headers().get("cookie")?.to_str().ok()?;

        for cookie in cookie_header.split(';') {
            let cookie = cookie.trim();
            if let Some(value) = cookie.strip_prefix(&format!("{}=", self.config.cookie_name)) {
                return Some(value.to_string());
            }
        }

        None
    }
}

impl<T, S, ReqBody, ResBody> Service<Request<ReqBody>> for SessionService<T, S, ReqBody, ResBody>
where
    S: SessionStore,
    T: Service<Request<ReqBody>, Response = Response<ResBody>> + Clone + Send + 'static,
    T::Future: Send,
    ReqBody: Body + Send + 'static,
    ResBody: Body + Send + 'static,
{
    type Response = Response<ResBody>;
    type Error = T::Error;
    type Future = std::pin::Pin<Box<dyn std::future::Future<Output = Result<Self::Response, Self::Error>> + Send>>;

    fn poll_ready(&mut self, cx: &mut std::task::Context<'_>) -> std::task::Poll<Result<(), Self::Error>> {
        self.inner.poll_ready(cx)
    }

    fn call(&mut self, mut request: Request<ReqBody>) -> Self::Future {
        let mut inner = self.inner.clone();
        let session_id = self.extract_session_id(&request);
        let config = self.config.clone();
        let store = self.store.clone();

        Box::pin(async move {
            let generate_session_id = || -> String {
                let mut bytes = vec![0u8; config.id_length];
                rand::rng().fill_bytes(&mut bytes);
                URL_SAFE_NO_PAD.encode(&bytes)
            };

            let session = if let Some(id) = session_id {
                if let Some(data) = store.get(&id).await {
                    if let Ok(data_map) = serde_json::from_str(&data) {
                        Session::from_data(id.to_string(), data_map).await
                    }
                    else {
                        Session::new(generate_session_id())
                    }
                }
                else {
                    Session::new(generate_session_id())
                }
            }
            else {
                Session::new(generate_session_id())
            };

            let session = Arc::new(session);
            request.extensions_mut().insert(session.clone());

            let mut response = inner.call(request).await?;

            if session.is_dirty().await || session.is_new() {
                let data = session.to_json().await;
                store.set(session.id(), &data, config.ttl).await;

                let cookie_value = config.build_cookie_header(session.id());
                if let Ok(header_value) = cookie_value.parse() {
                    response.headers_mut().append(http::header::SET_COOKIE, header_value);
                }
            }

            Ok(response)
        })
    }
}