mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-29 18:36:30 +02:00
30bdae3d9e
* sessions: check idp id to detect provider changes to force session invalidation * remove dead code * fix test
38 lines
1,009 B
Go
38 lines
1,009 B
Go
// Package sessions handles the storage, management, and validation
|
|
// of pomerium user sessions.
|
|
package sessions
|
|
|
|
import (
|
|
"errors"
|
|
"net/http"
|
|
)
|
|
|
|
// SessionStore defines an interface for loading, saving, and clearing a session.
|
|
type SessionStore interface {
|
|
SessionLoader
|
|
ClearSession(http.ResponseWriter, *http.Request)
|
|
SaveSession(http.ResponseWriter, *http.Request, interface{}) error
|
|
}
|
|
|
|
// SessionLoader defines an interface for loading a session.
|
|
type SessionLoader interface {
|
|
LoadSession(*http.Request) (string, error)
|
|
}
|
|
|
|
type multiSessionLoader []SessionLoader
|
|
|
|
func (l multiSessionLoader) LoadSession(r *http.Request) (string, error) {
|
|
for _, ll := range l {
|
|
s, err := ll.LoadSession(r)
|
|
if errors.Is(err, ErrNoSessionFound) {
|
|
continue
|
|
}
|
|
return s, err
|
|
}
|
|
return "", ErrNoSessionFound
|
|
}
|
|
|
|
// MultiSessionLoader returns a session loader that returns the first session available.
|
|
func MultiSessionLoader(loaders ...SessionLoader) SessionLoader {
|
|
return multiSessionLoader(loaders)
|
|
}
|