Home Explore Help
Sign In
LBP
/
miniflux_v2
mirror of https://github.com/miniflux/v2.git
4
0
Fork 0
Files Issues 0 Wiki
Tree: b51e7ea448
Branches Tags
miniflux_v2
/
storage
/
session.go

session.go 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. // Copyright 2017 Frédéric Guillot. All rights reserved.
    2. 

  2. // Use of this source code is governed by the Apache 2.0
    3. 

  3. // license that can be found in the LICENSE file.
    4. 

  4. 

  5. package storage // import "miniflux.app/storage"
    6. 

  6. 

  7. import (
    8. 

  8. 	"database/sql"
    9. 

  9. 	"fmt"
    10. 

  10. 

  11. 	"miniflux.app/crypto"
    12. 

  12. 	"miniflux.app/model"
    13. 

  13. )
    14. 

  14. 

  15. // CreateSession creates a new session.
    16. 

  16. func (s *Storage) CreateSession() (*model.Session, error) {
    17. 

  17. 	session := model.Session{
    18. 

  18. 		ID:   crypto.GenerateRandomString(32),
    19. 

  19. 		Data: &model.SessionData{CSRF: crypto.GenerateRandomString(64)},
    20. 

  20. 	}
    21. 

  21. 

  22. 	query := "INSERT INTO sessions (id, data) VALUES ($1, $2)"
    23. 

  23. 	_, err := s.db.Exec(query, session.ID, session.Data)
    24. 

  24. 	if err != nil {
    25. 

  25. 		return nil, fmt.Errorf("unable to create session: %v", err)
    26. 

  26. 	}
    27. 

  27. 

  28. 	return &session, nil
    29. 

  29. }
    30. 

  30. 

  31. // UpdateSessionField updates only one session field.
    32. 

  32. func (s *Storage) UpdateSessionField(sessionID, field string, value interface{}) error {
    33. 

  33. 	query := `UPDATE sessions
    34. 

  34. 		SET data = jsonb_set(data, '{%s}', to_jsonb($1::text), true)
    35. 

  35. 		WHERE id=$2`
    36. 

  36. 

  37. 	_, err := s.db.Exec(fmt.Sprintf(query, field), value, sessionID)
    38. 

  38. 	if err != nil {
    39. 

  39. 		return fmt.Errorf("unable to update session field: %v", err)
    40. 

  40. 	}
    41. 

  41. 

  42. 	return nil
    43. 

  43. }
    44. 

  44. 

  45. // Session returns the given session.
    46. 

  46. func (s *Storage) Session(id string) (*model.Session, error) {
    47. 

  47. 	var session model.Session
    48. 

  48. 

  49. 	query := "SELECT id, data FROM sessions WHERE id=$1"
    50. 

  50. 	err := s.db.QueryRow(query, id).Scan(
    51. 

  51. 		&session.ID,
    52. 

  52. 		&session.Data,
    53. 

  53. 	)
    54. 

  54. 

  55. 	if err == sql.ErrNoRows {
    56. 

  56. 		return nil, fmt.Errorf("session not found: %s", id)
    57. 

  57. 	} else if err != nil {
    58. 

  58. 		return nil, fmt.Errorf("unable to fetch session: %v", err)
    59. 

  59. 	}
    60. 

  60. 

  61. 	return &session, nil
    62. 

  62. }
    63. 

  63. 

  64. // FlushAllSessions removes all sessions from the database.
    65. 

  65. func (s *Storage) FlushAllSessions() (err error) {
    66. 

  66. 	_, err = s.db.Exec(`DELETE FROM user_sessions`)
    67. 

  67. 	if err != nil {
    68. 

  68. 		return err
    69. 

  69. 	}
    70. 

  70. 

  71. 	_, err = s.db.Exec(`DELETE FROM sessions`)
    72. 

  72. 	if err != nil {
    73. 

  73. 		return err
    74. 

  74. 	}
    75. 

  75. 

  76. 	return nil
    77. 

  77. }
    78. 

  78. 

  79. // CleanOldSessions removes sessions older than 30 days.
    80. 

  80. func (s *Storage) CleanOldSessions() int64 {
    81. 

  81. 	query := `DELETE FROM sessions
    82. 

  82. 		WHERE id IN (SELECT id FROM sessions WHERE created_at < now() - interval '30 days')`
    83. 

  83. 

  84. 	result, err := s.db.Exec(query)
    85. 

  85. 	if err != nil {
    86. 

  86. 		return 0
    87. 

  87. 	}
    88. 

  88. 

  89. 	n, _ := result.RowsAffected()
    90. 

  90. 	return n
    91. 

  91. }
    92.