Implemented login page and new jwt-based sessions. Watching cleanup.

2023-10-18 01:06:27 +03:00
parent bd680e3668
commit 429a7dfb16
6 changed files with 166 additions and 59 deletions
--- a/cista/session.py
+++ b/cista/session.py
@@ -0,0 +1,32 @@
+from time import time
+
+import jwt
+
+from .config import derived_secret
+
+session_secret = derived_secret("session")
+max_age = 60  # Seconds since last login
+
+def get(request):
+    try:
+        return jwt.decode(request.cookies.s, session_secret, algorithms=["HS256"])
+    except Exception as e:
+        s = None
+        return False if "s" in request.cookies else None
+
+def create(res, username, **kwargs):
+    data = {
+        "exp": int(time()) + max_age,
+        "username": username,
+        **kwargs,
+    }
+    s = jwt.encode(data, session_secret)
+    res.cookies.add_cookie("s", s, host_prefix=True, httponly=True, max_age=max_age)
+
+def update(res, s, **kwargs):
+    s.update(kwargs)
+    s = jwt.encode(s, session_secret)
+    res.cookies.add_cookie("s", s, host_prefix=True, httponly=True, max_age=max(1, s["exp"] - int(time())))
+
+def delete(res):
+    res.cookies.delete_cookie("s", host_prefix=True)