fiber/middleware/session/config.go

package session

import (
	"fmt"
	"strings"
	"time"

	"github.com/gofiber/fiber/v2"
	"github.com/gofiber/fiber/v2/utils"
)

// Config defines the config for middleware.
type Config struct {
	// Allowed session duration
	// Optional. Default value 24 * time.Hour
	Expiration time.Duration

	// Storage interface to store the session data
	// Optional. Default value memory.New()
	Storage fiber.Storage

	// KeyLookup is a string in the form of "<source>:<name>" that is used
	// to extract session id from the request.
	// Possible values: "header:<name>", "query:<name>" or "cookie:<name>"
	// Optional. Default value "cookie:session_id".
	KeyLookup string

	// Domain of the CSRF cookie.
	// Optional. Default value "".
	CookieDomain string

	// Path of the CSRF cookie.
	// Optional. Default value "".
	CookiePath string

	// Indicates if CSRF cookie is secure.
	// Optional. Default value false.
	CookieSecure bool

	// Indicates if CSRF cookie is HTTP only.
	// Optional. Default value false.
	CookieHTTPOnly bool

	// Value of SameSite cookie.
	// Optional. Default value "Lax".
	CookieSameSite string

	// KeyGenerator generates the session key.
	// Optional. Default value utils.UUIDv4
	KeyGenerator func() string

	// Deprecated, please use KeyLookup
	CookieName string

	// Source defines where to obtain the session id
	source Source

	// The session name
	sessionName string
}

type Source string

const (
	SourceCookie   Source = "cookie"
	SourceHeader   Source = "header"
	SourceURLQuery Source = "query"
)

// ConfigDefault is the default config
var ConfigDefault = Config{
	Expiration:   24 * time.Hour,
	KeyLookup:    "cookie:session_id",
	KeyGenerator: utils.UUIDv4,
	source:       "cookie",
	sessionName:  "session_id",
}

// Helper function to set default values
func configDefault(config ...Config) Config {
	// Return default config if nothing provided
	if len(config) < 1 {
		return ConfigDefault
	}

	// Override default config
	cfg := config[0]

	// Set default values
	if int(cfg.Expiration.Seconds()) <= 0 {
		cfg.Expiration = ConfigDefault.Expiration
	}
	if cfg.CookieName != "" {
		fmt.Println("[session] CookieName is deprecated, please use KeyLookup")
		cfg.KeyLookup = fmt.Sprintf("cookie:%s", cfg.CookieName)
	}
	if cfg.KeyLookup == "" {
		cfg.KeyLookup = ConfigDefault.KeyLookup
	}
	if cfg.KeyGenerator == nil {
		cfg.KeyGenerator = ConfigDefault.KeyGenerator
	}

	selectors := strings.Split(cfg.KeyLookup, ":")
	if len(selectors) != 2 {
		panic("[session] KeyLookup must in the form of <source>:<name>")
	}
	switch Source(selectors[0]) {
	case SourceCookie:
		cfg.source = SourceCookie
	case SourceHeader:
		cfg.source = SourceHeader
	case SourceURLQuery:
		cfg.source = SourceURLQuery
	default:
		panic("[session] source is not supported")
	}
	cfg.sessionName = selectors[1]

	return cfg
}
🛠 separate config 2020-11-11 14:03:16 +01:00			`package session`

			`import (`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`"fmt"`
			`"strings"`
🛠 separate config 2020-11-11 14:03:16 +01:00			`"time"`

			`"github.com/gofiber/fiber/v2"`
			`"github.com/gofiber/fiber/v2/utils"`
			`)`

			`// Config defines the config for middleware.`
			`type Config struct {`
			`// Allowed session duration`
🦺 simplify session config 2020-11-11 23:51:32 +01:00			`// Optional. Default value 24 * time.Hour`
🛠 separate config 2020-11-11 14:03:16 +01:00			`Expiration time.Duration`

🦺 simplify session config 2020-11-11 23:51:32 +01:00			`// Storage interface to store the session data`
			`// Optional. Default value memory.New()`
🛠 separate config 2020-11-11 14:03:16 +01:00			`Storage fiber.Storage`
🦺 simplify session config 2020-11-11 23:51:32 +01:00
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`// KeyLookup is a string in the form of "<source>:<name>" that is used`
			`// to extract session id from the request.`
			`// Possible values: "header:<name>", "query:<name>" or "cookie:<name>"`
			`// Optional. Default value "cookie:session_id".`
			`KeyLookup string`
🦺 simplify session config 2020-11-11 23:51:32 +01:00
			`// Domain of the CSRF cookie.`
			`// Optional. Default value "".`
			`CookieDomain string`

			`// Path of the CSRF cookie.`
			`// Optional. Default value "".`
			`CookiePath string`

			`// Indicates if CSRF cookie is secure.`
			`// Optional. Default value false.`
			`CookieSecure bool`

			`// Indicates if CSRF cookie is HTTP only.`
			`// Optional. Default value false.`
			`CookieHTTPOnly bool`

Fix incorrect comment in middleware/session/config.go 2021-03-20 12:55:39 +08:00			`// Value of SameSite cookie.`
			`// Optional. Default value "Lax".`
🦺 simplify session config 2020-11-11 23:51:32 +01:00			`CookieSameSite string`

			`// KeyGenerator generates the session key.`
🔐 use uuid v4 in session 2020-11-30 14:31:10 +01:00			`// Optional. Default value utils.UUIDv4`
🦺 simplify session config 2020-11-11 23:51:32 +01:00			`KeyGenerator func() string`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00
			`// Deprecated, please use KeyLookup`
			`CookieName string`

			`// Source defines where to obtain the session id`
			`source Source`

			`// The session name`
			`sessionName string`
🛠 separate config 2020-11-11 14:03:16 +01:00			`}`

🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`type Source string`

			`const (`
			`SourceCookie Source = "cookie"`
			`SourceHeader Source = "header"`
			`SourceURLQuery Source = "query"`
			`)`

🛠 separate config 2020-11-11 14:03:16 +01:00			`// ConfigDefault is the default config`
			`var ConfigDefault = Config{`
✏ update config 2020-11-11 18:49:07 +01:00			`Expiration: 24 * time.Hour,`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`KeyLookup: "cookie:session_id",`
🔐 use uuid v4 in session 2020-11-30 14:31:10 +01:00			`KeyGenerator: utils.UUIDv4,`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`source: "cookie",`
			`sessionName: "session_id",`
🛠 separate config 2020-11-11 14:03:16 +01:00			`}`

			`// Helper function to set default values`
			`func configDefault(config ...Config) Config {`
			`// Return default config if nothing provided`
			`if len(config) < 1 {`
			`return ConfigDefault`
			`}`

			`// Override default config`
			`cfg := config[0]`

			`// Set default values`
🧨 introduce destroy 2020-11-13 18:30:14 +01:00			`if int(cfg.Expiration.Seconds()) <= 0 {`
🦺 simplify session config 2020-11-11 23:51:32 +01:00			`cfg.Expiration = ConfigDefault.Expiration`
			`}`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00			`if cfg.CookieName != "" {`
			`fmt.Println("[session] CookieName is deprecated, please use KeyLookup")`
			`cfg.KeyLookup = fmt.Sprintf("cookie:%s", cfg.CookieName)`
			`}`
			`if cfg.KeyLookup == "" {`
			`cfg.KeyLookup = ConfigDefault.KeyLookup`
🩹 fix empty CookieName in session See https://github.com/gofiber/fiber/issues/1040 2020-11-27 16:36:22 +01:00			`}`
🦺 simplify session config 2020-11-11 23:51:32 +01:00			`if cfg.KeyGenerator == nil {`
			`cfg.KeyGenerator = ConfigDefault.KeyGenerator`
			`}`
🔥 Customize the source of session_id (#1159) * 🔥 Feature: Define KeyLookup configuration (#1110) * 🔥 Feature: Allow session ID to be written in header (#1110) * 🔥 Feature: Allow session ID to be obtained from different sources (#1110) * 📚 Doc: Add Source configuration (#1110) 2021-05-29 08:48:25 +08:00
			`selectors := strings.Split(cfg.KeyLookup, ":")`
			`if len(selectors) != 2 {`
			`panic("[session] KeyLookup must in the form of <source>:<name>")`
			`}`
			`switch Source(selectors[0]) {`
			`case SourceCookie:`
			`cfg.source = SourceCookie`
			`case SourceHeader:`
			`cfg.source = SourceHeader`
			`case SourceURLQuery:`
			`cfg.source = SourceURLQuery`
			`default:`
			`panic("[session] source is not supported")`
			`}`
			`cfg.sessionName = selectors[1]`

🛠 separate config 2020-11-11 14:03:16 +01:00			`return cfg`
			`}`