web_session.ml1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113let log_src = Logs.Src.create "sihl.middleware.session" module Logs = (val Logs.src_log log_src : Logs.LOG) let decode_session = match cookie_value with | None -> Ok None | Some -> (match Session.of_json cookie_value with | None -> let err_msg = Format.asprintf "Failed to parse value found in session cookie '%s': '%s'" cookie_key cookie_value in Logs.err (fun m -> m "%s" err_msg); Logs.info (fun m -> m "Maybe the cookie key '%s' collides with a cookie issued by \ someone else. Try to change the cookie key." cookie_key); Error err_msg | Some session -> Ok (Some session)) ;; let decode_session_req signed_with req = Opium.Request.cookie ~signed_with cookie_key req |> decode_session cookie_key ;; let decode_session_resp signed_with resp = Option.map (fun c -> snd c.Opium.Cookie.value) @@ Opium.Response.cookie ~signed_with cookie_key resp |> decode_session cookie_key ;; let find ?( = "_session") ?(secret = Core_configuration.read_secret ()) key req = let signed_with = Opium.Cookie.Signer.make secret in let session = decode_session_req cookie_key signed_with req |> CCResult.get_or_failwith in Option.bind session (Session.StrMap.find_opt key) ;; let get_all ?( = "_session") ?(secret = Core_configuration.read_secret ()) req = let open CCOption.Infix in let signed_with = Opium.Cookie.Signer.make secret in decode_session_req cookie_key signed_with req |> CCResult.get_or_failwith >|= Session.StrMap.to_seq >|= List.of_seq ;; let set ?( = "_session") ?(secret = Core_configuration.read_secret ()) session resp = let signed_with = Opium.Cookie.Signer.make secret in let session = session |> List.to_seq |> Session.StrMap.of_seq in let = Session.to_json session in let = cookie_key, cookie_value in Opium.Response.add_cookie_or_replace ~scope:(Uri.of_string "/") ~sign_with:signed_with cookie resp ;; let update_or_set_value ?( = "_session") ?(secret = Core_configuration.read_secret ()) ~key f resp = let signed_with = Opium.Cookie.Signer.make secret in let updated_session = match decode_session_resp cookie_key signed_with resp |> CCResult.get_or_failwith with | Some m -> Session.StrMap.update key f m | None -> Session.StrMap.empty |> Session.StrMap.update key f in let = Session.to_json updated_session in let = cookie_key, cookie_value in Opium.Response.add_cookie_or_replace ~scope:(Uri.of_string "/") ~sign_with:signed_with cookie resp ;; let set_value ?( = "_session") ?(secret = Core_configuration.read_secret ()) ~key value resp = update_or_set_value ~cookie_key ~secret ~key (CCFun.const @@ Some value) resp ;;