1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
use std::sync::Arc;
use rand::{distributions::Alphanumeric, rngs::OsRng, Rng};
use crate::{
middleware::{CookieJarManager, CookieJarManagerEndpoint},
session::{session_storage::SessionStorage, CookieConfig, Session, SessionStatus},
Endpoint, Middleware, Request, Result,
};
pub struct ServerSession<T> {
config: Arc<CookieConfig>,
storage: Arc<T>,
}
impl<T> ServerSession<T> {
pub fn new(config: CookieConfig, storage: T) -> Self {
Self {
config: Arc::new(config),
storage: Arc::new(storage),
}
}
}
impl<T: SessionStorage, E: Endpoint> Middleware<E> for ServerSession<T> {
type Output = CookieJarManagerEndpoint<ServerSessionEndpoint<T, E>>;
fn transform(&self, ep: E) -> Self::Output {
CookieJarManager::new().transform(ServerSessionEndpoint {
inner: ep,
config: self.config.clone(),
storage: self.storage.clone(),
})
}
}
fn generate_session_id() -> String {
let value = std::iter::repeat(())
.map(|()| OsRng.sample(Alphanumeric))
.take(32)
.collect::<Vec<_>>();
String::from_utf8(value).unwrap_or_default()
}
pub struct ServerSessionEndpoint<T, E> {
inner: E,
config: Arc<CookieConfig>,
storage: Arc<T>,
}
#[async_trait::async_trait]
impl<T, E> Endpoint for ServerSessionEndpoint<T, E>
where
T: SessionStorage,
E: Endpoint,
{
type Output = Result<E::Output>;
async fn call(&self, mut req: Request) -> Self::Output {
let cookie_jar = req.cookie().clone();
let mut session_id = self.config.get_cookie_value(&cookie_jar);
let session = match &session_id {
Some(id) => match self.storage.load_session(id).await? {
Some(entries) => Session::new(entries),
None => {
session_id = None;
Session::default()
}
},
None => Session::default(),
};
req.extensions_mut().insert(session.clone());
let resp = self.inner.call(req).await;
match session.status() {
SessionStatus::Changed => match session_id {
Some(session_id) => {
self.storage
.update_session(&session_id, &session.entries(), self.config.ttl())
.await?;
}
None => {
let session_id = generate_session_id();
self.config.set_cookie_value(&cookie_jar, &session_id);
self.storage
.update_session(&session_id, &session.entries(), self.config.ttl())
.await?;
}
},
SessionStatus::Renewed => {
if let Some(session_id) = session_id {
self.storage.remove_session(&session_id).await?;
}
let session_id = generate_session_id();
self.config.set_cookie_value(&cookie_jar, &session_id);
self.storage
.update_session(&session_id, &session.entries(), self.config.ttl())
.await?;
}
SessionStatus::Purged => {
if let Some(session_id) = session_id {
self.storage.remove_session(&session_id).await?;
self.config.remove_cookie(&cookie_jar);
}
}
SessionStatus::Unchanged => {}
};
Ok(resp)
}
}