authorizer/server/sessionstore/session.go

package sessionstore

import (
	"context"
	"log"
	"strings"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/envstore"
	"github.com/go-redis/redis/v8"
)

// SessionStore is a struct that defines available session stores
// If redis store is available, higher preference is given to that store.
// Else in memory store is used.
type SessionStore struct {
	InMemoryStoreObj    *InMemoryStore
	RedisMemoryStoreObj *RedisStore
}

// SessionStoreObj is a global variable that holds the
// reference to various session store instances
var SessionStoreObj SessionStore

// SetUserSession sets the user session in the session store
func SetUserSession(userId, fingerprint, refreshToken string) {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.AddUserSession(userId, fingerprint, refreshToken)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.AddUserSession(userId, fingerprint, refreshToken)
	}
}

// DeleteUserSession deletes the particular user session from the session store
func DeleteUserSession(userId, fingerprint string) {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.DeleteUserSession(userId, fingerprint)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.DeleteUserSession(userId, fingerprint)
	}
}

// DeleteAllSessions deletes all the sessions from the session store
func DeleteAllUserSession(userId string) {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.DeleteAllUserSession(userId)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.DeleteAllUserSession(userId)
	}
}

// GetUserSession returns the user session from the session store
func GetUserSession(userId, fingerprint string) string {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		return SessionStoreObj.RedisMemoryStoreObj.GetUserSession(userId, fingerprint)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		return SessionStoreObj.InMemoryStoreObj.GetUserSession(userId, fingerprint)
	}

	return ""
}

// GetUserSessions returns all the user sessions from the session store
func GetUserSessions(userId string) map[string]string {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		return SessionStoreObj.RedisMemoryStoreObj.GetUserSessions(userId)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		return SessionStoreObj.InMemoryStoreObj.GetUserSessions(userId)
	}

	return nil
}

// ClearStore clears the session store for authorizer tokens
func ClearStore() {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.ClearStore()
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.ClearStore()
	}
}

// SetSocialLoginState sets the social login state in the session store
func SetSocailLoginState(key, state string) {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.SetSocialLoginState(key, state)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.SetSocialLoginState(key, state)
	}
}

// GetSocialLoginState returns the social login state from the session store
func GetSocailLoginState(key string) string {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		return SessionStoreObj.RedisMemoryStoreObj.GetSocialLoginState(key)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		return SessionStoreObj.InMemoryStoreObj.GetSocialLoginState(key)
	}

	return ""
}

// RemoveSocialLoginState removes the social login state from the session store
func RemoveSocialLoginState(key string) {
	if SessionStoreObj.RedisMemoryStoreObj != nil {
		SessionStoreObj.RedisMemoryStoreObj.RemoveSocialLoginState(key)
	}
	if SessionStoreObj.InMemoryStoreObj != nil {
		SessionStoreObj.InMemoryStoreObj.RemoveSocialLoginState(key)
	}
}

// InitializeSessionStore initializes the SessionStoreObj based on environment variables
func InitSession() {
	if envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL) != "" {
		log.Println("using redis store to save sessions")
		if isCluster(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL)) {
			clusterOpt, err := getClusterOptions(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL))
			if err != nil {
				log.Fatalln("Error parsing redis url:", err)
			}
			rdb := redis.NewClusterClient(clusterOpt)
			ctx := context.Background()
			_, err = rdb.Ping(ctx).Result()
			if err != nil {
				log.Fatalln("Error connecting to redis cluster server", err)
			}
			SessionStoreObj.RedisMemoryStoreObj = &RedisStore{
				ctx:   ctx,
				store: rdb,
			}
			return
		}
		opt, err := redis.ParseURL(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL))
		if err != nil {
			log.Fatalln("Error parsing redis url:", err)
		}
		rdb := redis.NewClient(opt)
		ctx := context.Background()
		_, err = rdb.Ping(ctx).Result()

		if err != nil {
			log.Fatalln("Error connecting to redis server", err)
		}
		SessionStoreObj.RedisMemoryStoreObj = &RedisStore{
			ctx:   ctx,
			store: rdb,
		}

	} else {
		SessionStoreObj.InMemoryStoreObj = &InMemoryStore{
			store:            map[string]map[string]string{},
			socialLoginState: map[string]string{},
		}
	}
}

func isCluster(url string) bool {
	return len(strings.Split(url, ",")) > 1
}

func getClusterOptions(url string) (*redis.ClusterOptions, error) {
	hostPortsList := strings.Split(url, ",")
	opt, err := redis.ParseURL(hostPortsList[0])
	if err != nil {
		return nil, err
	}
	urls := []string{opt.Addr}
	urlList := hostPortsList[1:]
	urls = append(urls, urlList...)
	return &redis.ClusterOptions{Addrs: urls}, nil
}
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`package sessionstore`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00
			`import (`
			`"context"`
			`"log"`
Add redis cluster client as a session store. 2022-02-17 14:24:15 +00:00			`"strings"`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00
chore: rename project 2021-07-23 16:27:44 +00:00			`"github.com/authorizerdev/authorizer/server/constants"`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`"github.com/authorizerdev/authorizer/server/envstore"`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`"github.com/go-redis/redis/v8"`
			`)`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// SessionStore is a struct that defines available session stores`
			`// If redis store is available, higher preference is given to that store.`
			`// Else in memory store is used.`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`type SessionStore struct {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`InMemoryStoreObj *InMemoryStore`
			`RedisMemoryStoreObj *RedisStore`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// SessionStoreObj is a global variable that holds the`
			`// reference to various session store instances`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`var SessionStoreObj SessionStore`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// SetUserSession sets the user session in the session store`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`func SetUserSession(userId, fingerprint, refreshToken string) {`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`SessionStoreObj.RedisMemoryStoreObj.AddUserSession(userId, fingerprint, refreshToken)`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`}`
			`if SessionStoreObj.InMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`SessionStoreObj.InMemoryStoreObj.AddUserSession(userId, fingerprint, refreshToken)`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// DeleteUserSession deletes the particular user session from the session store`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`func DeleteUserSession(userId, fingerprint string) {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`SessionStoreObj.RedisMemoryStoreObj.DeleteUserSession(userId, fingerprint)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.InMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`SessionStoreObj.InMemoryStoreObj.DeleteUserSession(userId, fingerprint)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// DeleteAllSessions deletes all the sessions from the session store`
			`func DeleteAllUserSession(userId string) {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`SessionStoreObj.RedisMemoryStoreObj.DeleteAllUserSession(userId)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.InMemoryStoreObj != nil {`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`SessionStoreObj.InMemoryStoreObj.DeleteAllUserSession(userId)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// GetUserSession returns the user session from the session store`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`func GetUserSession(userId, fingerprint string) string {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`return SessionStoreObj.RedisMemoryStoreObj.GetUserSession(userId, fingerprint)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.InMemoryStoreObj != nil {`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`return SessionStoreObj.InMemoryStoreObj.GetUserSession(userId, fingerprint)`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`

			`return ""`
			`}`

Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`// GetUserSessions returns all the user sessions from the session store`
			`func GetUserSessions(userId string) map[string]string {`
			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
			`return SessionStoreObj.RedisMemoryStoreObj.GetUserSessions(userId)`
			`}`
			`if SessionStoreObj.InMemoryStoreObj != nil {`
			`return SessionStoreObj.InMemoryStoreObj.GetUserSessions(userId)`
			`}`

			`return nil`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// ClearStore clears the session store for authorizer tokens`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`func ClearStore() {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
			`SessionStoreObj.RedisMemoryStoreObj.ClearStore()`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`if SessionStoreObj.InMemoryStoreObj != nil {`
			`SessionStoreObj.InMemoryStoreObj.ClearStore()`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// SetSocialLoginState sets the social login state in the session store`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`func SetSocailLoginState(key, state string) {`
			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
			`SessionStoreObj.RedisMemoryStoreObj.SetSocialLoginState(key, state)`
			`}`
			`if SessionStoreObj.InMemoryStoreObj != nil {`
			`SessionStoreObj.InMemoryStoreObj.SetSocialLoginState(key, state)`
			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// GetSocialLoginState returns the social login state from the session store`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`func GetSocailLoginState(key string) string {`
			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
			`return SessionStoreObj.RedisMemoryStoreObj.GetSocialLoginState(key)`
			`}`
			`if SessionStoreObj.InMemoryStoreObj != nil {`
			`return SessionStoreObj.InMemoryStoreObj.GetSocialLoginState(key)`
			`}`

			`return ""`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// RemoveSocialLoginState removes the social login state from the session store`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`func RemoveSocialLoginState(key string) {`
			`if SessionStoreObj.RedisMemoryStoreObj != nil {`
			`SessionStoreObj.RedisMemoryStoreObj.RemoveSocialLoginState(key)`
			`}`
			`if SessionStoreObj.InMemoryStoreObj != nil {`
			`SessionStoreObj.InMemoryStoreObj.RemoveSocialLoginState(key)`
			`}`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// InitializeSessionStore initializes the SessionStoreObj based on environment variables`
fix: env init (#33) 2021-07-28 06:23:37 +00:00			`func InitSession() {`
fix: rename config -> env and handle env interface better 2022-01-20 11:22:37 +00:00			`if envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL) != "" {`
feat/add arangodb support (#80) feat: add arangodb init fix: dao for sql + arangodb * fix: update error logs * fix: use db name dynamically 2021-12-17 15:55:07 +00:00			`log.Println("using redis store to save sessions")`
Add redis cluster client as a session store. 2022-02-17 14:24:15 +00:00			`if isCluster(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL)) {`
			`clusterOpt, err := getClusterOptions(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL))`
			`if err != nil {`
			`log.Fatalln("Error parsing redis url:", err)`
			`}`
			`rdb := redis.NewClusterClient(clusterOpt)`
			`ctx := context.Background()`
			`_, err = rdb.Ping(ctx).Result()`
			`if err != nil {`
			`log.Fatalln("Error connecting to redis cluster server", err)`
			`}`
			`SessionStoreObj.RedisMemoryStoreObj = &RedisStore{`
			`ctx: ctx,`
			`store: rdb,`
			`}`
			`return`
			`}`
fix: rename config -> env and handle env interface better 2022-01-20 11:22:37 +00:00			`opt, err := redis.ParseURL(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyRedisURL))`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`if err != nil {`
			`log.Fatalln("Error parsing redis url:", err)`
			`}`
			`rdb := redis.NewClient(opt)`
			`ctx := context.Background()`
			`_, err = rdb.Ping(ctx).Result()`

			`if err != nil {`
			`log.Fatalln("Error connecting to redis server", err)`
			`}`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`SessionStoreObj.RedisMemoryStoreObj = &RedisStore{`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`ctx: ctx,`
			`store: rdb,`
			`}`

			`} else {`
add google login - refactor resolvers - fix signup method typos Resolves #17 2021-07-17 16:29:50 +00:00			`SessionStoreObj.InMemoryStoreObj = &InMemoryStore{`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`store: map[string]map[string]string{},`
			`socialLoginState: map[string]string{},`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`
			`}`
			`}`
Add redis cluster client as a session store. 2022-02-17 14:24:15 +00:00
			`func isCluster(url string) bool {`
			`return len(strings.Split(url, ",")) > 1`
			`}`

			`func getClusterOptions(url string) (*redis.ClusterOptions, error) {`
			`hostPortsList := strings.Split(url, ",")`
			`opt, err := redis.ParseURL(hostPortsList[0])`
			`if err != nil {`
			`return nil, err`
			`}`
			`urls := []string{opt.Addr}`
			`urlList := hostPortsList[1:]`
			`urls = append(urls, urlList...)`
			`return &redis.ClusterOptions{Addrs: urls}, nil`
			`}`