From d673bd34945699df96e38c54f70352608430fbc4 Mon Sep 17 00:00:00 2001 From: vnugent Date: Thu, 9 Mar 2023 01:48:40 -0500 Subject: Omega cache, session, and account provider complete overhaul --- .../src/WebSessionIdFactory.cs | 100 +++++++++++++++++++++ 1 file changed, 100 insertions(+) create mode 100644 libs/VNLib.Plugins.Sessions.VNCache/src/WebSessionIdFactory.cs (limited to 'libs/VNLib.Plugins.Sessions.VNCache/src/WebSessionIdFactory.cs') diff --git a/libs/VNLib.Plugins.Sessions.VNCache/src/WebSessionIdFactory.cs b/libs/VNLib.Plugins.Sessions.VNCache/src/WebSessionIdFactory.cs new file mode 100644 index 0000000..96e9938 --- /dev/null +++ b/libs/VNLib.Plugins.Sessions.VNCache/src/WebSessionIdFactory.cs @@ -0,0 +1,100 @@ +/* +* Copyright (c) 2023 Vaughn Nugent +* +* Library: VNLib +* Package: VNLib.Plugins.Essentials.Sessions.VNCache +* File: WebSessionIdFactory.cs +* +* WebSessionIdFactory.cs is part of VNLib.Plugins.Essentials.Sessions.VNCache which is part of the larger +* VNLib collection of libraries and utilities. +* +* VNLib.Plugins.Essentials.Sessions.VNCache is free software: you can redistribute it and/or modify +* it under the terms of the GNU Affero General Public License as +* published by the Free Software Foundation, either version 3 of the +* License, or (at your option) any later version. +* +* VNLib.Plugins.Essentials.Sessions.VNCache is distributed in the hope that it will be useful, +* but WITHOUT ANY WARRANTY; without even the implied warranty of +* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +* GNU Affero General Public License for more details. +* +* You should have received a copy of the GNU Affero General Public License +* along with this program. If not, see https://www.gnu.org/licenses/. +*/ + +using System; +using System.Collections.Generic; + +using VNLib.Hashing; +using VNLib.Net.Http; +using VNLib.Utils.Extensions; +using VNLib.Plugins.Essentials.Extensions; +using VNLib.Plugins.Extensions.Loading; +using VNLib.Plugins.Sessions.Cache.Client; + +namespace VNLib.Plugins.Sessions.VNCache +{ + /// + /// implementation, using + /// http cookies as session id storage + /// + [ConfigurationName(WebSessionProviderEntry.WEB_SESSION_CONFIG)] + internal sealed class WebSessionIdFactory : ISessionIdFactory + { + public TimeSpan ValidFor { get; } + + /// + public bool RegenerationSupported { get; } = true; + /// + public bool RegenIdOnEmptyEntry { get; } = true; + + + private readonly string SessionCookieName; + private readonly int _cookieSize; + + /// + /// Initialzies a new web session Id factory + /// + /// The size of the cookie in bytes + /// The name of the session cookie + /// The time the session cookie is valid for + public WebSessionIdFactory(uint cookieSize, string sessionCookieName, TimeSpan validFor) + { + ValidFor = validFor; + SessionCookieName = sessionCookieName; + _cookieSize = (int)cookieSize; + } + + public WebSessionIdFactory(PluginBase pbase, IConfigScope config) + { + _cookieSize = (int)config["cookie_size"].GetUInt32(); + SessionCookieName = config["cookie_name"].GetString() + ?? throw new KeyNotFoundException($"Missing required element 'cookie_name' for config '{WebSessionProviderEntry.WEB_SESSION_CONFIG}'"); + ValidFor = config["valid_for_sec"].GetTimeSpan(TimeParseType.Seconds); + } + + + public string RegenerateId(IHttpEvent entity) + { + //Random hex hash + string cookie = RandomHash.GetRandomBase32(_cookieSize); + + //Set the session id cookie + entity.Server.SetCookie(SessionCookieName, cookie, ValidFor, secure: true, httpOnly: true); + + //return session-id value from cookie value + return cookie; + } + + public string? TryGetSessionId(IHttpEvent entity) + { + //Get session cookie + return entity.Server.RequestCookies.GetValueOrDefault(SessionCookieName); + } + + public bool CanService(IHttpEvent entity) + { + return entity.Server.RequestCookies.ContainsKey(SessionCookieName) || entity.Server.IsBrowser(); + } + } +} \ No newline at end of file -- cgit