2023-10-17 23:06:27 +01:00
|
|
|
from time import time
|
|
|
|
|
|
|
|
|
|
import jwt
|
|
|
|
|
|
|
|
|
|
from .config import derived_secret
|
|
|
|
|
|
2023-10-19 00:06:14 +01:00
|
|
|
session_secret = lambda: derived_secret("session")
|
2023-10-17 23:06:27 +01:00
|
|
|
max_age = 60 # Seconds since last login
|
|
|
|
|
|
|
|
|
|
def get(request):
|
|
|
|
|
try:
|
2023-10-19 00:06:14 +01:00
|
|
|
return jwt.decode(request.cookies.s, session_secret(), algorithms=["HS256"])
|
2023-10-17 23:06:27 +01:00
|
|
|
except Exception as e:
|
|
|
|
|
s = None
|
|
|
|
|
return False if "s" in request.cookies else None
|
|
|
|
|
|
|
|
|
|
def create(res, username, **kwargs):
|
|
|
|
|
data = {
|
|
|
|
|
"exp": int(time()) + max_age,
|
|
|
|
|
"username": username,
|
|
|
|
|
**kwargs,
|
|
|
|
|
}
|
2023-10-19 00:06:14 +01:00
|
|
|
s = jwt.encode(data, session_secret())
|
2023-10-19 17:55:59 +01:00
|
|
|
res.cookies.add_cookie("s", s, httponly=True, max_age=max_age)
|
2023-10-17 23:06:27 +01:00
|
|
|
|
|
|
|
|
def update(res, s, **kwargs):
|
|
|
|
|
s.update(kwargs)
|
2023-10-19 00:06:14 +01:00
|
|
|
s = jwt.encode(s, session_secret())
|
2023-10-19 17:55:59 +01:00
|
|
|
res.cookies.add_cookie("s", s, httponly=True, max_age=max(1, s["exp"] - int(time())))
|
2023-10-17 23:06:27 +01:00
|
|
|
|
|
|
|
|
def delete(res):
|
2023-10-19 17:55:59 +01:00
|
|
|
res.cookies.delete_cookie("s")
|
