internal/sessions: refactor how sessions loading (#351)

These chagnes standardize how session loading is done for session cookie, auth bearer token, and query params. - Bearer token previously combined with session cookie. - rearranged cookie-store to put exported methods above unexported - added header store that implements session loader interface - added query param store that implements session loader interface Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
2025-08-02 08:19:23 +02:00 · 2019-10-06 10:47:53 -07:00 · 2019-10-06 10:47:53 -07:00 · badd8d69af
commit badd8d69af
parent 7aa4621b1b
13 changed files with 322 additions and 234 deletions
--- a/internal/sessions/cookie_store_test.go
+++ b/internal/sessions/cookie_store_test.go
@ -38,33 +38,30 @@ func TestNewCookieStore(t *testing.T) {
 	}{
 		{"good",
 			&CookieStoreOptions{
-				Name:              "_cookie",
-				CookieSecure:      true,
-				CookieHTTPOnly:    true,
-				CookieDomain:      "pomerium.io",
-				CookieExpire:      10 * time.Second,
-				Encoder:           encoder,
-				BearerTokenHeader: "Authorization",
+				Name:           "_cookie",
+				CookieSecure:   true,
+				CookieHTTPOnly: true,
+				CookieDomain:   "pomerium.io",
+				CookieExpire:   10 * time.Second,
+				Encoder:        encoder,
 			},
 			&CookieStore{
-				Name:              "_cookie",
-				CookieSecure:      true,
-				CookieHTTPOnly:    true,
-				CookieDomain:      "pomerium.io",
-				CookieExpire:      10 * time.Second,
-				Encoder:           encoder,
-				BearerTokenHeader: "Authorization",
+				Name:           "_cookie",
+				CookieSecure:   true,
+				CookieHTTPOnly: true,
+				CookieDomain:   "pomerium.io",
+				CookieExpire:   10 * time.Second,
+				Encoder:        encoder,
 			},
 			false},
 		{"missing name",
 			&CookieStoreOptions{
-				Name:              "",
-				CookieSecure:      true,
-				CookieHTTPOnly:    true,
-				CookieDomain:      "pomerium.io",
-				CookieExpire:      10 * time.Second,
-				Encoder:           encoder,
-				BearerTokenHeader: "Authorization",
+				Name:           "",
+				CookieSecure:   true,
+				CookieHTTPOnly: true,
+				CookieDomain:   "pomerium.io",
+				CookieExpire:   10 * time.Second,
+				Encoder:        encoder,
 			},
 			nil,
 			true},
@ -250,23 +247,3 @@ func TestMockSessionStore(t *testing.T) {
 		})
 	}
 }
-
-func Test_ParentSubdomain(t *testing.T) {
-	t.Parallel()
-	tests := []struct {
-		s    string
-		want string
-	}{
-		{"httpbin.corp.example.com", "corp.example.com"},
-		{"some.httpbin.corp.example.com", "httpbin.corp.example.com"},
-		{"example.com", ""},
-		{"", ""},
-	}
-	for _, tt := range tests {
-		t.Run(tt.s, func(t *testing.T) {
-			if got := ParentSubdomain(tt.s); got != tt.want {
-				t.Errorf("ParentSubdomain() = %v, want %v", got, tt.want)
-			}
-		})
-	}
-}