willcore.session

Release 1.0.4

WillCore.Session is a module that contains additional assignables that provides simple and lightweight session functionality in WillCore.Server.

Homepage Repository npm JavaScript Download

Keywords
Server, NodeJS
License
LGPL-2.1-only
Install
npm install willcore.session@1.0.4

Documentation

WillCore.Session

Lightweight session provider for WillCore.Server - By Philip Schoeman

WillCore.Session is a module that contains additional assignables that provides simple and lightweight session functionality in WillCore.Server.

WillCore.Session allows you to create session state within WillCore.Server and WIllCore.UI. For more information check their documentation.

1) Getting Started

To install on an existing WillCore.Server project using NPM:

npm install willcore.session

Enable sessions on a server instance:

serverInstance.sessionName.session;

2) Assignable Overview

Session Assignable

Activates the session module in a WillCore server.

Target Property Name Assignable Name Values
Server Has name session none

Session Properties

Property Name Property Type Description Default Value
cookie string Name of the session cookie "willCore_session"
encryptionKey String 32 Character string, used to encrypt the session cookie with "Q3UBzdH9GEfiRCTKbi5MTPyChpzXLsTD"
timeout Number Expiration time of the cookie, in seconds 21600
sameSite bool Asserts that a cookie must not be sent with cross-origin requests false
domain string Host to which the cookie will be sent. null

By activating the session assignable an object containing the session data will become available on a property with the same name as the session assignable will be added on the action model.

Authorize Assignable

Adds an interceptor to an action (RPC or REST) and file service that will only allow access to an action or files if a valid session is present. When the interceptor is set to before, the request will be blocked and the action not executed. If the interceptor is set to after, the action will execute and then request will be blocked.

Target Property Name Assignable Name Values
RPC Actions, REST Actions, File and Files before/after session none

When a request is blocked, an HTTP response code 501 will be returned.

3) Action Model Session Object

After activating the session module, an object will be available on the model of RPC actions and REST actions. This object will be available on a property with the same name as the session module. For example:

//Activating the session:
serverInstance.user.session;
//The session object will be available on
 model.user

Methods on the Model Session Object

Type Name Parameters/Type Result Description
Function authenticate Object : Session Object void Sets the session cookie and the current session to the session object
Function remove None void Deletes the current session and logs the user out.
Property authenticated bool A field that will always be available indicating if there is an active session.

All other session fields set on the session object via the authenticate method, will be available on the model session object.

4) Service To Verify Session

The Session module will add a service to verify if an active session exists. This service will be available at /session/authenticated.

The result of this service will be the session object if a session is active and a field authenticated will always be returned indicating if an active session is present.

5) Full Example

//main.js - Setting up the server
const willCoreProxy = require("willcore.core");

let willcore = willCoreProxy.new();
willcore.testServer.server[__dirname] = 8581;
willcore.testServer.http;
//Activating the session on field "user"
willcore.testServer.user.session;
willcore.testServer.testService.service = "/testSessionService.js";
module.exports = (service) => {
    //Action to authenticate and log a user in
    service.authenticate.action.post = async (model) => {
        if (model.password === "demoPassword" && model.email === "test@gmail.com"){
             model.user.authenticate({ email: "test@gmail.com" });
             model.message = "You are logged in";
        }else{
            model.message = "Invalid details provided.";
        }
    };
    //Action to verify if a user is logged in
    service.isAuthenticated.action.post = async (model) => {
        model.isAuthenticated = model.user.authenticated;
    };
    //This action will only be accessible when a session is valid
    service.blocked.action.get = async (model) => {
        model.message = "You are allowed";
    };
    service.blocked.before.authorize;
    //Action to log a user out.
    service.logout.action.get = async (model) => {
        model.user.remove();
        model.message = "Logged out";
    };
};

Stats

Dependencies
0
Dependent packages
2
Dependent repositories
0
Total releases
5
Latest release
First release
Stars
0
Forks
0
Watchers
1
Contributors
1
Repository size
6.65 MB
SourceRank
8

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

1.0.4
1.0.3
1.0.2
1.0.1
1.0.0

Contributors

MediChargePhil


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2022-05-24 13:55:04 UTC

Login to resync this project