forked from ServiceStack/ServiceStack
-
Notifications
You must be signed in to change notification settings - Fork 1
/
SessionExtensions.cs
170 lines (144 loc) · 6.37 KB
/
SessionExtensions.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
using System;
using System.Collections.Generic;
using System.Linq;
using System.Net;
using System.Web;
using ServiceStack.CacheAccess;
using ServiceStack.Common;
using ServiceStack.Configuration;
using ServiceStack.ServiceHost;
using ServiceStack.ServiceInterface.Auth;
using ServiceStack.Text;
using ServiceStack.WebHost.Endpoints;
using ServiceStack.WebHost.Endpoints.Extensions;
namespace ServiceStack.ServiceInterface
{
public class SessionOptions
{
public const string Temporary = "temp";
public const string Permanent = "perm";
}
/// <summary>
/// Configure ServiceStack to have ISession support
/// </summary>
public static class SessionExtensions
{
public static string GetSessionId(this IHttpRequest httpReq)
{
var sessionOptions = GetSessionOptions(httpReq);
return sessionOptions.Contains(SessionOptions.Permanent)
? httpReq.GetItemOrCookie(SessionFeature.PermanentSessionId)
: httpReq.GetItemOrCookie(SessionFeature.SessionId);
}
public static string GetPermanentSessionId(this IHttpRequest httpReq)
{
return httpReq.GetItemOrCookie(SessionFeature.PermanentSessionId);
}
public static string GetTemporarySessionId(this IHttpRequest httpReq)
{
return httpReq.GetItemOrCookie(SessionFeature.SessionId);
}
/// <summary>
/// Create the active Session or Permanent Session Id cookie.
/// </summary>
/// <returns></returns>
public static string CreateSessionId(this IHttpResponse res, IHttpRequest req)
{
var sessionOptions = GetSessionOptions(req);
return sessionOptions.Contains(SessionOptions.Permanent)
? res.CreatePermanentSessionId(req)
: res.CreateTemporarySessionId(req);
}
/// <summary>
/// Create both Permanent and Session Id cookies and return the active sessionId
/// </summary>
/// <returns></returns>
public static string CreateSessionIds(this IHttpResponse res, IHttpRequest req)
{
var sessionOptions = GetSessionOptions(req);
var permId = res.CreatePermanentSessionId(req);
var tempId = res.CreateTemporarySessionId(req);
return sessionOptions.Contains(SessionOptions.Permanent)
? permId
: tempId;
}
public static string CreatePermanentSessionId(this IHttpResponse res, IHttpRequest req)
{
var sessionId = Convert.ToBase64String(Guid.NewGuid().ToByteArray());
res.Cookies.AddPermanentCookie(SessionFeature.PermanentSessionId, sessionId);
req.Items[SessionFeature.PermanentSessionId] = sessionId;
return sessionId;
}
public static string CreateTemporarySessionId(this IHttpResponse res, IHttpRequest req)
{
var sessionId = Convert.ToBase64String(Guid.NewGuid().ToByteArray());
res.Cookies.AddSessionCookie(SessionFeature.SessionId, sessionId,
(EndpointHost.Config.OnlySendSessionCookiesSecurely && req.IsSecureConnection));
req.Items[SessionFeature.SessionId] = sessionId;
return sessionId;
}
public static HashSet<string> GetSessionOptions(this IHttpRequest httpReq)
{
var sessionOptions = httpReq.GetItemOrCookie(SessionFeature.SessionOptionsKey);
return sessionOptions.IsNullOrEmpty()
? new HashSet<string>()
: sessionOptions.Split(',').ToHashSet();
}
public static void UpdateSession(this IAuthSession session, UserAuth userAuth)
{
if (userAuth == null || session == null) return;
session.Roles = userAuth.Roles;
session.Permissions = userAuth.Permissions;
}
public static void UpdateFromUserAuthRepo(this IAuthSession session, IHttpRequest req, IUserAuthRepository userAuthRepo = null)
{
if (userAuthRepo == null)
userAuthRepo = req.TryResolve<IUserAuthRepository>();
if (userAuthRepo == null) return;
var userAuth = userAuthRepo.GetUserAuth(session, null);
session.UpdateSession(userAuth);
}
public static HashSet<string> AddSessionOptions(this IHttpResponse res, IHttpRequest req, params string[] options)
{
if (res == null || req == null || options.Length == 0) return new HashSet<string>();
var existingOptions = req.GetSessionOptions();
foreach (var option in options)
{
if (option.IsNullOrEmpty()) continue;
if (option == SessionOptions.Permanent)
existingOptions.Remove(SessionOptions.Temporary);
else if (option == SessionOptions.Temporary)
existingOptions.Remove(SessionOptions.Permanent);
existingOptions.Add(option);
}
var strOptions = String.Join(",", existingOptions.ToArray());
res.Cookies.AddPermanentCookie(SessionFeature.SessionOptionsKey, strOptions);
req.Items[SessionFeature.SessionOptionsKey] = strOptions;
return existingOptions;
}
public static string GetSessionKey(IHttpRequest httpReq = null)
{
var sessionId = SessionFeature.GetSessionId(httpReq);
return sessionId == null ? null : SessionFeature.GetSessionKey(sessionId);
}
public static TUserSession SessionAs<TUserSession>(this ICacheClient cache,
IHttpRequest httpReq = null, IHttpResponse httpRes = null)
{
var sessionKey = GetSessionKey(httpReq);
if (sessionKey != null)
{
var userSession = cache.Get<TUserSession>(sessionKey);
if (!Equals(userSession, default(TUserSession)))
return userSession;
}
if (sessionKey == null)
SessionFeature.CreateSessionIds(httpReq, httpRes);
var unAuthorizedSession = (TUserSession)typeof(TUserSession).CreateInstance();
return unAuthorizedSession;
}
public static void ClearSession(this ICacheClient cache, IHttpRequest httpReq = null)
{
cache.Remove(GetSessionKey(httpReq));
}
}
}