Expand description
Building blocks for sv claim validation
(STANDARDS_AUTH_INVALIDATION §5).
In 4.0.0 the validator itself moved into the middleware layer
(see SvAwareSessionResolver)
so consumers get sv enforcement by default. This module hosts the
reusable primitives:
SessionVersionCache— pluggable cache trait (default impl: in-memoryMemorySessionVersionCache, 60 s TTL). Consumers with shared substrates (KVRocks, Redis) can implement this trait to converge break-glass across pods within network RTT instead of waiting for the per-pod TTL.SV_CACHE_KEY_PREFIX/SV_CACHE_TTL— the cache contract constants. Match PAS’scrates/ppoppo-token::sv_cache_keyso a custom KVRocks cache adapter can read the same key namespace as PCS chat-auth.
See SvAwareSessionResolver
for the resolver entry point.
Structs§
- Memory
Session Version Cache - In-memory
SessionVersionCache. Default choice for SDK consumers.
Constants§
- SV_
CACHE_ KEY_ PREFIX - Namespace prefix for cache keys. Matches chat-auth and is_admin caches.
- SV_
CACHE_ TTL - TTL per
paseto-sv-claim.md §R5. 60 s, non-configurable by design.
Traits§
- Session
Version Cache - Cache abstraction for
sv:{ppnum_id}lookups.