691e3e2900
Ensures that cookies on non-permanent login are set without max-age to ensure removal when browser/tab is closed. Sessions stored in the database are now updated and expiration value slides forward in time with every activity from the user.
110 lines
2.5 KiB
Go
110 lines
2.5 KiB
Go
package request
|
|
|
|
import (
|
|
"net/url"
|
|
|
|
"github.com/cortezaproject/corteza-server/system/types"
|
|
"github.com/gorilla/sessions"
|
|
)
|
|
|
|
const (
|
|
keyRememberMe = "remember-me"
|
|
keyOriginalSession = "originalSession"
|
|
keyAuthUser = "authUser"
|
|
keyRoles = "roles"
|
|
keyOAuth2AuthParams = "oauth2AuthParams"
|
|
keyOAuth2Client = "oauth2ClientID"
|
|
keyOAuth2ClientAuthorized = "oauth2ClientAuthorized"
|
|
)
|
|
|
|
// GetUser is wrapper to get value from session
|
|
func GetAuthUser(ses *sessions.Session) *authUser {
|
|
val, has := ses.Values[keyAuthUser]
|
|
if !has {
|
|
return nil
|
|
}
|
|
|
|
au := val.(*authUser)
|
|
if au.User != nil {
|
|
au.User.SetRoles(getRoleMemberships(ses)...)
|
|
}
|
|
|
|
return au
|
|
}
|
|
|
|
// GetRoleMemberships is wrapper to get value from session
|
|
func getRoleMemberships(ses *sessions.Session) []uint64 {
|
|
val, has := ses.Values[keyRoles]
|
|
if !has {
|
|
return nil
|
|
}
|
|
|
|
return val.([]uint64)
|
|
}
|
|
|
|
// GetOAuth2AuthParams is wrapper to get value from session
|
|
func GetOAuth2AuthParams(ses *sessions.Session) url.Values {
|
|
val, has := ses.Values[keyOAuth2AuthParams]
|
|
if !has {
|
|
return nil
|
|
}
|
|
|
|
return val.(url.Values)
|
|
}
|
|
|
|
// SetOauth2AuthParams is a session value setting wrapper for Oauth2AuthParams
|
|
func SetOauth2AuthParams(ses *sessions.Session, val url.Values) {
|
|
if val != nil {
|
|
ses.Values[keyOAuth2AuthParams] = val
|
|
} else {
|
|
delete(ses.Values, keyOAuth2AuthParams)
|
|
}
|
|
}
|
|
|
|
// GetOauth2Client is wrapper to get value from session
|
|
func GetOauth2Client(ses *sessions.Session) *types.AuthClient {
|
|
val, has := ses.Values[keyOAuth2Client]
|
|
if !has {
|
|
return nil
|
|
}
|
|
|
|
return val.(*types.AuthClient)
|
|
}
|
|
|
|
// SetOauth2Client is a session value setting wrapper for Oauth2Client
|
|
func SetOauth2Client(ses *sessions.Session, val *types.AuthClient) {
|
|
if val != nil {
|
|
ses.Values[keyOAuth2Client] = val
|
|
} else {
|
|
delete(ses.Values, keyOAuth2Client)
|
|
}
|
|
}
|
|
|
|
// IsOauth2ClientAuthorized is wrapper to get value from session
|
|
func IsOauth2ClientAuthorized(ses *sessions.Session) bool {
|
|
val, has := ses.Values[keyOAuth2ClientAuthorized]
|
|
if !has {
|
|
return false
|
|
}
|
|
|
|
return val.(bool)
|
|
}
|
|
|
|
// SetOauth2ClientAuthorized is a session value setting wrapper for Oauth2ClientAuthorized
|
|
func SetOauth2ClientAuthorized(ses *sessions.Session, val bool) {
|
|
if val {
|
|
ses.Values[keyOAuth2ClientAuthorized] = true
|
|
} else {
|
|
delete(ses.Values, keyOAuth2ClientAuthorized)
|
|
}
|
|
}
|
|
|
|
// IsPermLogin decodes remember-me flag from the session and returns true if set
|
|
func IsPermLogin(ses *sessions.Session) (p bool) {
|
|
if aux, has := ses.Values[keyRememberMe]; has {
|
|
p, _ = aux.(bool)
|
|
}
|
|
|
|
return
|
|
}
|