JakeHillion/storj
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8e3aa4d25b
storj/satellite/console/consoleweb/consolewebauth/auth.go
Jeremy Wharton 3f26cc599f satellite/console,web/satellite: invalidate sessions after inactivity 
Sessions now expire after a much shorter amount of time, requiring
clients to issue API requests for session extension. This is handled
behind the scenes as the user interacts with the page, but once session
expiration is imminent, a modal appears which informs the user of his
inactivity and presents him with the choice of loging out or preserving
his session.

Change-Id: I68008d45859c814a835d65d882ad5ad2199d618e
2022-08-23 15:51:05 +00:00

78 lines
1.9 KiB
Go
Raw Blame History

// Copyright (C) 2019 Storj Labs, Inc.
// See LICENSE for copying information.
package consolewebauth
import (
"net/http"
"time"
"storj.io/storj/satellite/console"
"storj.io/storj/satellite/console/consoleauth"
)
// CookieSettings variable cookie settings.
type CookieSettings struct {
Name string
Path string
}
// CookieAuth handles cookie authorization.
type CookieAuth struct {
settings CookieSettings
}
// NewCookieAuth create new cookie authorization with provided settings.
func NewCookieAuth(settings CookieSettings) *CookieAuth {
return &CookieAuth{
settings: settings,
}
}
// GetToken retrieves token from request.
func (auth *CookieAuth) GetToken(r *http.Request) (console.TokenInfo, error) {
cookie, err := r.Cookie(auth.settings.Name)
if err != nil {
return console.TokenInfo{}, err
}
token, err := consoleauth.FromBase64URLString(cookie.Value)
if err != nil {
return console.TokenInfo{}, err
}
return console.TokenInfo{
Token: token,
ExpiresAt: cookie.Expires,
}, nil
}
// SetTokenCookie sets parametrized token cookie that is not accessible from js.
func (auth *CookieAuth) SetTokenCookie(w http.ResponseWriter, tokenInfo console.TokenInfo) {
http.SetCookie(w, &http.Cookie{
Name: auth.settings.Name,
Value: tokenInfo.Token.String(),
Path: auth.settings.Path,
Expires: tokenInfo.ExpiresAt,
HttpOnly: true,
SameSite: http.SameSiteStrictMode,
})
}
// RemoveTokenCookie removes auth cookie that is not accessible from js.
func (auth *CookieAuth) RemoveTokenCookie(w http.ResponseWriter) {
http.SetCookie(w, &http.Cookie{
Name: auth.settings.Name,
Value: "",
Path: auth.settings.Path,
Expires: time.Unix(0, 0),
HttpOnly: true,
SameSite: http.SameSiteStrictMode,
})
}
// GetTokenCookieName returns the name of the cookie storing the session token.
func (auth *CookieAuth) GetTokenCookieName() string {
return auth.settings.Name
}
Reference in New Issue View Git Blame Copy Permalink