-
Notifications
You must be signed in to change notification settings - Fork 115
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
web UI auth: store session data on server side
- Loading branch information
1 parent
bc6ad90
commit e9b2883
Showing
5 changed files
with
178 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,6 +1,9 @@ | ||
# pcsd configuration file | ||
# Set PCSD_DEBUG to true for advanced pcsd debugging information | ||
PCSD_DEBUG=false | ||
RACK_ENV=production | ||
# Set DISABLE_GUI to true to disable GUI frontend in pcsd | ||
DISABLE_GUI=false | ||
# Set web UI sesions lifetime | ||
SESSION_LIFETIME=3600 | ||
# Do not change | ||
RACK_ENV=production |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,71 @@ | ||
require 'rack/session/pool' | ||
|
||
class SessionPoolLifetime < Rack::Session::Pool | ||
|
||
def initialize(app, options={}) | ||
super | ||
@pool_timestamp = Hash.new() | ||
end | ||
|
||
def call(env) | ||
# save session storage to env so we can get it later | ||
env[:__session_storage] = self | ||
super | ||
end | ||
|
||
def get_session(env, sid) | ||
with_lock(env) do | ||
now = Time.now() | ||
# delete the session if expired | ||
if @default_options[:expire_after] and sid and @pool_timestamp[sid] and | ||
@pool_timestamp[sid] < (now - @default_options[:expire_after]) | ||
then | ||
delete_session(sid) | ||
end | ||
# create new session if nonexistent | ||
unless sid and session = @pool[sid] | ||
sid, session = generate_sid, {} | ||
@pool.store sid, session | ||
end | ||
# bump session's access time | ||
@pool_timestamp[sid] = now | ||
[sid, session] | ||
end | ||
end | ||
|
||
def set_session(env, session_id, new_session, options) | ||
with_lock(env) do | ||
@pool.store session_id, new_session | ||
# bump session's access time | ||
@pool_timestamp[session_id] = Time.now() | ||
session_id | ||
end | ||
end | ||
|
||
def destroy_session(env, session_id, options) | ||
with_lock(env) do | ||
delete_session(session_id) | ||
generate_sid unless options[:drop] | ||
end | ||
end | ||
|
||
def drop_expired(env) | ||
return unless lifetime = @default_options[:expire_after] | ||
with_lock(env) { | ||
threshold = Time.now() - lifetime | ||
@pool_timestamp.select { |sid, timestamp| | ||
timestamp < threshold | ||
}.keys.each { |sid| | ||
delete_session(sid) | ||
} | ||
} | ||
end | ||
|
||
private | ||
|
||
def delete_session(sid) | ||
@pool.delete(sid) | ||
@pool_timestamp.delete(sid) | ||
end | ||
end | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,71 @@ | ||
require 'test/unit' | ||
|
||
require 'pcsd_test_utils.rb' | ||
require 'session.rb' | ||
|
||
class TestSessionPool < Test::Unit::TestCase | ||
|
||
def setup() | ||
@env = { | ||
'rack.multithread' => true, | ||
} | ||
end | ||
|
||
def fixture_get_pool(lifetime) | ||
pool = SessionPoolLifetime.new(nil, {:expire_after => lifetime,}) | ||
(1..3).each { |i| pool.set_session(@env, "sid#{i}", {'value' => i}, {}) } | ||
return pool | ||
end | ||
|
||
def test_drop_expired_on_get() | ||
lifetime = 2 | ||
pool = fixture_get_pool(lifetime) | ||
# touch sessions each second | ||
lifetime.times { | ||
sleep(1) | ||
assert_equal({'value' => 1}, pool.get_session(@env, 'sid1')[1]) | ||
assert_equal({'value' => 3}, pool.get_session(@env, 'sid3')[1]) | ||
} | ||
# after @lifetime passes the unused session gets removed on access | ||
sleep(1) | ||
assert_equal({'value' => 1}, pool.get_session(@env, 'sid1')[1]) | ||
assert_equal({'value' => 3}, pool.get_session(@env, 'sid3')[1]) | ||
assert_equal({}, pool.get_session(@env, 'sid2')[1]) | ||
end | ||
|
||
def test_drop_expired_explicit() | ||
lifetime = 2 | ||
pool = fixture_get_pool(lifetime) | ||
# touch sessions each second (otherwise they will be removed on access) | ||
lifetime.times { | ||
sleep(1) | ||
pool.get_session(@env, 'sid2') | ||
pool.set_session(@env, 'sid3', {'value' => 33}, {}) | ||
} | ||
sleep(1) | ||
|
||
pool.drop_expired(@env) | ||
assert_equal( | ||
{ | ||
'sid2' => {'value' => 2,}, | ||
'sid3' => {'value' => 33,}, | ||
}, | ||
pool.pool | ||
) | ||
end | ||
|
||
def test_no_lifetime() | ||
pool = fixture_get_pool(nil) | ||
sleep(1) | ||
assert_equal({'value' => 1}, pool.get_session(@env, 'sid1')[1]) | ||
assert_equal({'value' => 2}, pool.get_session(@env, 'sid2')[1]) | ||
assert_equal({'value' => 3}, pool.get_session(@env, 'sid3')[1]) | ||
sleep(1) | ||
pool.drop_expired(@env) | ||
assert_equal({'value' => 1}, pool.get_session(@env, 'sid1')[1]) | ||
assert_equal({'value' => 2}, pool.get_session(@env, 'sid2')[1]) | ||
assert_equal({'value' => 3}, pool.get_session(@env, 'sid3')[1]) | ||
end | ||
|
||
end | ||
|