Documentation ¶
Index ¶
- Constants
- Variables
- func AddCookie(cookie *http.Cookie, res http.ResponseWriter)
- func GetCookie(name string, req *http.Request) string
- func IsValidCookieDomain(domain string) bool
- func RemoveCookie(name string, res http.ResponseWriter, req *http.Request)
- type Config
- type Database
- type Manager
- type Session
- type Sessions
Constants ¶
const ( // DefaultCookieName the secret cookie's name for sessions DefaultCookieName = "irissessionid" // DefaultCookieLength is the default Session Manager's CookieLength, which is 32 DefaultCookieLength = 32 )
Variables ¶
var ( // CookieExpireDelete may be set on Cookie.Expire for expiring the given cookie. CookieExpireDelete = time.Date(2009, time.November, 10, 23, 0, 0, 0, time.UTC) // CookieExpireUnlimited indicates that the cookie doesn't expire. CookieExpireUnlimited = time.Now().AddDate(24, 10, 10) )
Functions ¶
func AddCookie ¶
func AddCookie(cookie *http.Cookie, res http.ResponseWriter)
AddCookie adds a cookie
func GetCookie ¶
GetCookie returns cookie's value by it's name returns empty string if nothing was found
func IsValidCookieDomain ¶
IsValidCookieDomain returns true if the receiver is a valid domain to set valid means that is recognised as 'domain' by the browser, so it(the cookie) can be shared with subdomains also
func RemoveCookie ¶
func RemoveCookie(name string, res http.ResponseWriter, req *http.Request)
RemoveCookie deletes a cookie by it's name/key
Types ¶
type Config ¶
type Config struct { // Cookie string, the session's client cookie name, for example: "mysessionid" // // Defaults to "irissessionid" Cookie string // CookieSecureTLS set to true if server is running over TLS // and you need the session's cookie "Secure" field to be setted true. // // Note: The user should fill the Decode configuation field in order for this to work. // Recommendation: You don't need this to be setted to true, just fill the Encode and Decode fields // with a third-party library like secure cookie, example is provided at the _examples folder. // // Defaults to false CookieSecureTLS bool // Encode the cookie value if not nil. // Should accept as first argument the cookie name (config.Name) // as second argument the server's generated session id. // Should return the new session id, if error the session id setted to empty which is invalid. // // Note: Errors are not printed, so you have to know what you're doing, // and remember: if you use AES it only supports key sizes of 16, 24 or 32 bytes. // You either need to provide exactly that amount or you derive the key from what you type in. // // Defaults to nil Encode func(cookieName string, value interface{}) (string, error) // Decode the cookie value if not nil. // Should accept as first argument the cookie name (config.Name) // as second second accepts the client's cookie value (the encoded session id). // Should return an error if decode operation failed. // // Note: Errors are not printed, so you have to know what you're doing, // and remember: if you use AES it only supports key sizes of 16, 24 or 32 bytes. // You either need to provide exactly that amount or you derive the key from what you type in. // // Defaults to nil Decode func(cookieName string, cookieValue string, v interface{}) error // Expires the duration of which the cookie must expires (created_time.Add(Expires)). // If you want to delete the cookie when the browser closes, set it to -1. // // 0 means no expire, (24 years) // -1 means when browser closes // > 0 is the time.Duration which the session cookies should expire. // // Defaults to infinitive/unlimited life duration(0) Expires time.Duration // SessionIDGenerator should returns a random session id. // By default we will use a uuid impl package to generate // that, but developers can change that with simple assignment. SessionIDGenerator func() string // DisableSubdomainPersistence set it to true in order dissallow your q subdomains to have access to the session cookie // // Defaults to false DisableSubdomainPersistence bool }
Config is the configuration for sessions. Please review it well before using sessions.
type Database ¶
type Database interface { Load(string) map[string]interface{} Update(string, map[string]interface{}) }
Database is the interface which all session databases should implement By design it doesn't support any type of cookie session like other frameworks, I want to protect you, believe me, no context access (although we could) The scope of the database is to session somewhere the sessions in order to
keep them after restarting the server, nothing more.
the values are sessiond by the underline session, the check for new sessions, or 'this session value should added' are made automatically by q, you are able just to set the values to your backend database with Load function. session database doesn't have any write or read access to the session, the loading of the initial data is done by the Load(string) map[string]interfface{} function synchronization are made automatically, you can register more than one session database but the first non-empty Load return data will be used as the session values.
type Manager ¶
type Manager struct {
// contains filtered or unexported fields
}
Manager implements the Sessions interface which Iris uses to start and destroy a session from its Context.
func New ¶
New returns a new fast, feature-rich sessions manager it can be adapted to an Iris station
func (*Manager) Destroy ¶
func (s *Manager) Destroy(res http.ResponseWriter, req *http.Request)
Destroy remove the session data and remove the associated cookie.
func (*Manager) DestroyAll ¶
func (s *Manager) DestroyAll()
DestroyAll removes all sessions from the server-side memory (and database if registered). Client's session cookie will still exist but it will be reseted on the next request.
func (*Manager) DestroyByID ¶
DestroyByID removes the session entry from the server-side memory (and database if registered). Client's session cookie will still exist but it will be reseted on the next request.
It's safe to use it even if you are not sure if a session with that id exists.
Note: the sid should be the original one (i.e: fetched by a store ) it's not decoded.
func (*Manager) UseDatabase ¶
UseDatabase adds a session database to the manager's provider, a session db doesn't have write access
type Session ¶
type Session interface { ID() string Get(string) interface{} HasFlash() bool GetFlash(string) interface{} GetString(key string) string GetFlashString(string) string GetInt(key string) (int, error) GetInt64(key string) (int64, error) GetFloat32(key string) (float32, error) GetFloat64(key string) (float64, error) GetBoolean(key string) (bool, error) GetAll() map[string]interface{} GetFlashes() map[string]interface{} VisitAll(cb func(k string, v interface{})) Set(string, interface{}) SetImmutable(key string, value interface{}) SetFlash(string, interface{}) Delete(string) bool DeleteFlash(string) Clear() ClearFlashes() } // Session is being implemented inside session.go
Session should expose the Sessions's end-user API. This will be returned at the sess := context.Session().
type Sessions ¶
type Sessions interface { // Start should start the session for the particular net/http request. Start(http.ResponseWriter, *http.Request) Session // Destroy should kills the net/http session and remove the associated cookie. Destroy(http.ResponseWriter, *http.Request) } // Sessions is being implemented by Manager
Sessions must be implemented within a session manager.
A Sessions should be responsible to Start a sesion based on raw http.ResponseWriter and http.Request, which should return a compatible Session interface, type. If the external session manager doesn't qualifies, then the user should code the rest of the functions with empty implementation.
Sessions should be responsible to Destroy a session based on the http.ResponseWriter and http.Request, this function should works individually.