closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7991 Commits
2 Branches
178 MiB
Tree: 3c0e6d1126
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3c0e6d1126'
${ noResults }
gitea/modules/session/virtual.go

192 lines
5.0 KiB
Raw Normal View History

Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Unfortunately MemProvider Init does not actually Init properly (#6692) * Unfortunately MemProvider Init does not actually Init properly Worse all of its members are private and you cannot update them. Simple fix copy it in to modules session. Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix misspelling
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Use gitea forked macaron (#7933) Signed-off-by: Tamal Saha <tamal@appscode.com>
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Add golangci (#6418)
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Unfortunately MemProvider Init does not actually Init properly (#6692) * Unfortunately MemProvider Init does not actually Init properly Worse all of its members are private and you cannot update them. Simple fix copy it in to modules session. Signed-off-by: Andrew Thornton <art27@cantab.net> * Fix misspelling
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Use gitea forked macaron (#7933) Signed-off-by: Tamal Saha <tamal@appscode.com>
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
Use gitea forked macaron (#7933) Signed-off-by: Tamal Saha <tamal@appscode.com>
5 years ago
Prevent creating empty sessions (#6677) * Prevent creating empty sessions Signed-off-by: Andrew Thornton <art27@cantab.net> * Update modules/setting/session.go * Remove unnecessary option Signed-off-by: Andrew Thornton <art27@cantab.net> * Add destory to list of ignored misspellings * rename cookie.go -> virtual.go * Delete old file * Add test to ensure that sessions are not created without being logged in Signed-off-by: Andrew Thornton <art27@cantab.net> * fix tests Signed-off-by: Andrew Thornton <art27@cantab.net> * Update integrations/create_no_session_test.go
5 years ago
 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package session
  6. 

  7. import (
  8. 	"container/list"
  9. 	"encoding/json"
  10. 	"fmt"
  11. 	"sync"
  12. 

  13. 	"gitea.com/macaron/session"
  14. 	couchbase "gitea.com/macaron/session/couchbase"
  15. 	memcache "gitea.com/macaron/session/memcache"
  16. 	mysql "gitea.com/macaron/session/mysql"
  17. 	nodb "gitea.com/macaron/session/nodb"
  18. 	postgres "gitea.com/macaron/session/postgres"
  19. 	redis "gitea.com/macaron/session/redis"
  20. )
  21. 

  22. // VirtualSessionProvider represents a shadowed session provider implementation.

  23. type VirtualSessionProvider struct {
  24. 	lock     sync.RWMutex
  25. 	provider session.Provider
  26. }
  27. 

  28. // Init initializes the cookie session provider with given root path.

  29. func (o *VirtualSessionProvider) Init(gclifetime int64, config string) error {
  30. 	var opts session.Options
  31. 	if err := json.Unmarshal([]byte(config), &opts); err != nil {
  32. 		return err
  33. 	}
  34. 	// Note that these options are unprepared so we can't just use NewManager here.

  35. 	// Nor can we access the provider map in session.

  36. 	// So we will just have to do this by hand.

  37. 	// This is only slightly more wrong than modules/setting/session.go:23

  38. 	switch opts.Provider {
  39. 	case "memory":
  40. 		o.provider = &MemProvider{list: list.New(), data: make(map[string]*list.Element)}
  41. 	case "file":
  42. 		o.provider = &session.FileProvider{}
  43. 	case "redis":
  44. 		o.provider = &redis.RedisProvider{}
  45. 	case "mysql":
  46. 		o.provider = &mysql.MysqlProvider{}
  47. 	case "postgres":
  48. 		o.provider = &postgres.PostgresProvider{}
  49. 	case "couchbase":
  50. 		o.provider = &couchbase.CouchbaseProvider{}
  51. 	case "memcache":
  52. 		o.provider = &memcache.MemcacheProvider{}
  53. 	case "nodb":
  54. 		o.provider = &nodb.NodbProvider{}
  55. 	default:
  56. 		return fmt.Errorf("VirtualSessionProvider: Unknown Provider: %s", opts.Provider)
  57. 	}
  58. 	return o.provider.Init(gclifetime, opts.ProviderConfig)
  59. }
  60. 

  61. // Read returns raw session store by session ID.

  62. func (o *VirtualSessionProvider) Read(sid string) (session.RawStore, error) {
  63. 	o.lock.RLock()
  64. 	defer o.lock.RUnlock()
  65. 	if o.provider.Exist(sid) {
  66. 		return o.provider.Read(sid)
  67. 	}
  68. 	kv := make(map[interface{}]interface{})
  69. 	kv["_old_uid"] = "0"
  70. 	return NewVirtualStore(o, sid, kv), nil
  71. }
  72. 

  73. // Exist returns true if session with given ID exists.

  74. func (o *VirtualSessionProvider) Exist(sid string) bool {
  75. 	return true
  76. }
  77. 

  78. // Destroy deletes a session by session ID.

  79. func (o *VirtualSessionProvider) Destroy(sid string) error {
  80. 	o.lock.Lock()
  81. 	defer o.lock.Unlock()
  82. 	return o.provider.Destroy(sid)
  83. }
  84. 

  85. // Regenerate regenerates a session store from old session ID to new one.

  86. func (o *VirtualSessionProvider) Regenerate(oldsid, sid string) (session.RawStore, error) {
  87. 	o.lock.Lock()
  88. 	defer o.lock.Unlock()
  89. 	return o.provider.Regenerate(oldsid, sid)
  90. }
  91. 

  92. // Count counts and returns number of sessions.

  93. func (o *VirtualSessionProvider) Count() int {
  94. 	o.lock.RLock()
  95. 	defer o.lock.RUnlock()
  96. 	return o.provider.Count()
  97. }
  98. 

  99. // GC calls GC to clean expired sessions.

  100. func (o *VirtualSessionProvider) GC() {
  101. 	o.provider.GC()
  102. }
  103. 

  104. func init() {
  105. 	session.Register("VirtualSession", &VirtualSessionProvider{})
  106. }
  107. 

  108. // VirtualStore represents a virtual session store implementation.

  109. type VirtualStore struct {
  110. 	p    *VirtualSessionProvider
  111. 	sid  string
  112. 	lock sync.RWMutex
  113. 	data map[interface{}]interface{}
  114. }
  115. 

  116. // NewVirtualStore creates and returns a virtual session store.

  117. func NewVirtualStore(p *VirtualSessionProvider, sid string, kv map[interface{}]interface{}) *VirtualStore {
  118. 	return &VirtualStore{
  119. 		p:    p,
  120. 		sid:  sid,
  121. 		data: kv,
  122. 	}
  123. }
  124. 

  125. // Set sets value to given key in session.

  126. func (s *VirtualStore) Set(key, val interface{}) error {
  127. 	s.lock.Lock()
  128. 	defer s.lock.Unlock()
  129. 

  130. 	s.data[key] = val
  131. 	return nil
  132. }
  133. 

  134. // Get gets value by given key in session.

  135. func (s *VirtualStore) Get(key interface{}) interface{} {
  136. 	s.lock.RLock()
  137. 	defer s.lock.RUnlock()
  138. 

  139. 	return s.data[key]
  140. }
  141. 

  142. // Delete delete a key from session.

  143. func (s *VirtualStore) Delete(key interface{}) error {
  144. 	s.lock.Lock()
  145. 	defer s.lock.Unlock()
  146. 

  147. 	delete(s.data, key)
  148. 	return nil
  149. }
  150. 

  151. // ID returns current session ID.

  152. func (s *VirtualStore) ID() string {
  153. 	return s.sid
  154. }
  155. 

  156. // Release releases resource and save data to provider.

  157. func (s *VirtualStore) Release() error {
  158. 	s.lock.Lock()
  159. 	defer s.lock.Unlock()
  160. 	// Now need to lock the provider

  161. 	s.p.lock.Lock()
  162. 	defer s.p.lock.Unlock()
  163. 	if oldUID, ok := s.data["_old_uid"]; (ok && (oldUID != "0" || len(s.data) > 1)) || (!ok && len(s.data) > 0) {
  164. 		// Now ensure that we don't exist!

  165. 		realProvider := s.p.provider
  166. 

  167. 		if realProvider.Exist(s.sid) {
  168. 			// This is an error!

  169. 			return fmt.Errorf("new sid '%s' already exists", s.sid)
  170. 		}
  171. 		realStore, err := realProvider.Read(s.sid)
  172. 		if err != nil {
  173. 			return err
  174. 		}
  175. 		for key, value := range s.data {
  176. 			if err := realStore.Set(key, value); err != nil {
  177. 				return err
  178. 			}
  179. 		}
  180. 		return realStore.Release()
  181. 	}
  182. 	return nil
  183. }
  184. 

  185. // Flush deletes all session data.

  186. func (s *VirtualStore) Flush() error {
  187. 	s.lock.Lock()
  188. 	defer s.lock.Unlock()
  189. 

  190. 	s.data = make(map[interface{}]interface{})
  191. 	return nil
  192. }