aboutsummaryrefslogtreecommitdiff
path: root/src/server/LoginSession.hs
diff options
context:
space:
mode:
authorJoris Guyonvarch2015-07-18 15:19:48 +0200
committerJoris Guyonvarch2015-07-18 15:19:48 +0200
commit89dd4de13896f8e37d1bf133080eb881ab42b292 (patch)
treef7d8cc5f412355524ef5b3f128aa09fce89c0afa /src/server/LoginSession.hs
parent0041c546869f0a7fd59a085cc75b481237b6c380 (diff)
Adding login/logout functions thanks to a client session
Diffstat (limited to 'src/server/LoginSession.hs')
-rw-r--r--src/server/LoginSession.hs51
1 files changed, 51 insertions, 0 deletions
diff --git a/src/server/LoginSession.hs b/src/server/LoginSession.hs
new file mode 100644
index 0000000..c755607
--- /dev/null
+++ b/src/server/LoginSession.hs
@@ -0,0 +1,51 @@
+{-# LANGUAGE OverloadedStrings #-}
+
+module LoginSession
+ ( put
+ , get
+ , delete
+ ) where
+
+import Web.Scotty (ActionM)
+import Web.Scotty.Cookie (setSimpleCookie, getCookie, deleteCookie)
+import qualified Web.ClientSession as CS
+
+import Control.Monad.IO.Class (liftIO)
+
+import Data.Text (Text)
+import qualified Data.Text.Encoding as TE
+
+sessionName :: Text
+sessionName = "SESSION"
+
+sessionKeyFile :: FilePath
+sessionKeyFile = "sessionKey"
+
+put :: Text -> ActionM ()
+put value = do
+ encrypted <- liftIO $ encrypt value
+ setSimpleCookie sessionName encrypted
+
+encrypt :: Text -> IO Text
+encrypt value = do
+ iv <- CS.randomIV
+ key <- CS.getKey sessionKeyFile
+ return . TE.decodeUtf8 $ CS.encrypt key iv (TE.encodeUtf8 value)
+
+get :: ActionM (Maybe Text)
+get = do
+ maybeEncrypted <- getCookie sessionName
+ case maybeEncrypted of
+ Just encrypted ->
+ liftIO $ decrypt encrypted
+ Nothing ->
+ return Nothing
+
+decrypt :: Text -> IO (Maybe Text)
+decrypt encrypted = do
+ key <- CS.getKey sessionKeyFile
+ let decrypted = TE.decodeUtf8 <$> CS.decrypt key (TE.encodeUtf8 encrypted)
+ return decrypted
+
+delete :: ActionM ()
+delete = deleteCookie sessionName
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-30 06:29:02 +0000