EdgeAdmin/internal/nodes/session_manager.go

// Copyright 2023 GoEdge CDN goedge.cdn@gmail.com. All rights reserved. Official site: https://goedge.cloud .

package nodes

import (
	"encoding/json"
	"strings"
	"time"

	"github.com/TeaOSLab/EdgeAdmin/internal/rpc"
	"github.com/TeaOSLab/EdgeAdmin/internal/ttlcache"
	"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
	"github.com/iwind/TeaGo/actions"
	"github.com/iwind/TeaGo/logs"
)

// SessionManager SESSION管理
type SessionManager struct {
	life uint
}

func NewSessionManager() (*SessionManager, error) {
	return &SessionManager{}, nil
}

func (this *SessionManager) Init(config *actions.SessionConfig) {
	this.life = config.Life
}

func (this *SessionManager) Read(sid string) map[string]string {
	// 忽略OTP
	if strings.HasSuffix(sid, "_otp") {
		return map[string]string{}
	}

	var result = map[string]string{}

	var cacheKey = "SESSION@" + sid
	var item = ttlcache.DefaultCache.Read(cacheKey)
	if item != nil && item.Value != nil {
		itemMap, ok := item.Value.(map[string]string)
		if ok {
			return itemMap
		}
	}

	rpcClient, err := rpc.SharedRPC()
	if err != nil {
		return map[string]string{}
	}

	resp, err := rpcClient.LoginSessionRPC().FindLoginSession(rpcClient.Context(0), &pb.FindLoginSessionRequest{Sid: sid})
	if err != nil {
		logs.Println("SESSION", "read '"+sid+"' failed: "+err.Error())
		result["@error"] = err.Error()
		return result
	}

	var session = resp.LoginSession
	if session == nil || len(session.ValuesJSON) == 0 {
		return result
	}

	err = json.Unmarshal(session.ValuesJSON, &result)
	if err != nil {
		logs.Println("SESSION", "decode '"+sid+"' values failed: "+err.Error())
	}

	// Write to cache
	ttlcache.DefaultCache.Write(cacheKey, result, time.Now().Unix()+300 /** must not be too long **/)

	return result
}

func (this *SessionManager) WriteItem(sid string, key string, value string) bool {
	// 删除缓存
	defer ttlcache.DefaultCache.Delete("SESSION@" + sid)

	// 忽略OTP
	if strings.HasSuffix(sid, "_otp") {
		return false
	}

	rpcClient, err := rpc.SharedRPC()
	if err != nil {
		return false
	}

	_, err = rpcClient.LoginSessionRPC().WriteLoginSessionValue(rpcClient.Context(0), &pb.WriteLoginSessionValueRequest{
		Sid:   sid,
		Key:   key,
		Value: value,
	})
	if err != nil {
		logs.Println("SESSION", "write sid:'"+sid+"' key:'"+key+"' failed: "+err.Error())
	}

	return true
}

func (this *SessionManager) Delete(sid string) bool {
	// 删除缓存
	defer ttlcache.DefaultCache.Delete("SESSION@" + sid)

	// 忽略OTP
	if strings.HasSuffix(sid, "_otp") {
		return false
	}

	rpcClient, err := rpc.SharedRPC()
	if err != nil {
		return false
	}
	_, err = rpcClient.LoginSessionRPC().DeleteLoginSession(rpcClient.Context(0), &pb.DeleteLoginSessionRequest{Sid: sid})
	if err != nil {
		logs.Println("SESSION", "delete '"+sid+"' failed: "+err.Error())
	}
	return true
}
v1.4.1 2024-07-27 15:42:58 +08:00			`// Copyright 2023 GoEdge CDN goedge.cdn@gmail.com. All rights reserved. Official site: https://goedge.cloud .`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00
			`package nodes`

			`import (`
			`"encoding/json"`
v1.4.1 2024-07-27 15:42:58 +08:00			`"strings"`
			`"time"`

使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`"github.com/TeaOSLab/EdgeAdmin/internal/rpc"`
部分中文转换为多语言代号 2023-06-28 16:18:52 +08:00			`"github.com/TeaOSLab/EdgeAdmin/internal/ttlcache"`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"`
			`"github.com/iwind/TeaGo/actions"`
			`"github.com/iwind/TeaGo/logs"`
			`)`

提升Cookie安全性 2023-04-09 17:10:53 +08:00			`// SessionManager SESSION管理`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`type SessionManager struct {`
修复无法启动安装的Bug 2023-03-04 09:34:10 +08:00			`life uint`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`}`

			`func NewSessionManager() (*SessionManager, error) {`
修复无法启动安装的Bug 2023-03-04 09:34:10 +08:00			`return &SessionManager{}, nil`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`}`

			`func (this SessionManager) Init(config actions.SessionConfig) {`
			`this.life = config.Life`
			`}`

			`func (this *SessionManager) Read(sid string) map[string]string {`
在管理员登录后才验证OTP 2023-02-04 16:44:33 +08:00			`// 忽略OTP`
			`if strings.HasSuffix(sid, "_otp") {`
			`return map[string]string{}`
			`}`

使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`var result = map[string]string{}`

部分中文转换为多语言代号 2023-06-28 16:18:52 +08:00			`var cacheKey = "SESSION@" + sid`
			`var item = ttlcache.DefaultCache.Read(cacheKey)`
			`if item != nil && item.Value != nil {`
			`itemMap, ok := item.Value.(map[string]string)`
			`if ok {`
			`return itemMap`
			`}`
			`}`

修复无法启动安装的Bug 2023-03-04 09:34:10 +08:00			`rpcClient, err := rpc.SharedRPC()`
			`if err != nil {`
			`return map[string]string{}`
			`}`

			`resp, err := rpcClient.LoginSessionRPC().FindLoginSession(rpcClient.Context(0), &pb.FindLoginSessionRequest{Sid: sid})`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`if err != nil {`
			`logs.Println("SESSION", "read '"+sid+"' failed: "+err.Error())`
SESSION读取失败时不强制重新登录 2023-04-21 15:39:51 +08:00			`result["@error"] = err.Error()`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`return result`
			`}`

			`var session = resp.LoginSession`
			`if session == nil \|\| len(session.ValuesJSON) == 0 {`
			`return result`
			`}`

			`err = json.Unmarshal(session.ValuesJSON, &result)`
			`if err != nil {`
			`logs.Println("SESSION", "decode '"+sid+"' values failed: "+err.Error())`
			`}`

部分中文转换为多语言代号 2023-06-28 16:18:52 +08:00			`// Write to cache`
			`ttlcache.DefaultCache.Write(cacheKey, result, time.Now().Unix()+300 / must not be too long /)`

使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`return result`
			`}`

			`func (this *SessionManager) WriteItem(sid string, key string, value string) bool {`
使用本地SID二次校验增强管理系统安全性 2024-04-08 10:24:10 +08:00			`// 删除缓存`
允许单个账号在同一个IP登录多个客户端 2024-05-03 12:09:27 +08:00			`defer ttlcache.DefaultCache.Delete("SESSION@" + sid)`
使用本地SID二次校验增强管理系统安全性 2024-04-08 10:24:10 +08:00
在管理员登录后才验证OTP 2023-02-04 16:44:33 +08:00			`// 忽略OTP`
			`if strings.HasSuffix(sid, "_otp") {`
			`return false`
			`}`

修复无法启动安装的Bug 2023-03-04 09:34:10 +08:00			`rpcClient, err := rpc.SharedRPC()`
			`if err != nil {`
			`return false`
			`}`

			`_, err = rpcClient.LoginSessionRPC().WriteLoginSessionValue(rpcClient.Context(0), &pb.WriteLoginSessionValueRequest{`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`Sid: sid,`
			`Key: key,`
			`Value: value,`
			`})`
			`if err != nil {`
			`logs.Println("SESSION", "write sid:'"+sid+"' key:'"+key+"' failed: "+err.Error())`
			`}`

			`return true`
			`}`

			`func (this *SessionManager) Delete(sid string) bool {`
使用本地SID二次校验增强管理系统安全性 2024-04-08 10:24:10 +08:00			`// 删除缓存`
允许单个账号在同一个IP登录多个客户端 2024-05-03 12:09:27 +08:00			`defer ttlcache.DefaultCache.Delete("SESSION@" + sid)`
使用本地SID二次校验增强管理系统安全性 2024-04-08 10:24:10 +08:00
在管理员登录后才验证OTP 2023-02-04 16:44:33 +08:00			`// 忽略OTP`
			`if strings.HasSuffix(sid, "_otp") {`
			`return false`
			`}`

修复无法启动安装的Bug 2023-03-04 09:34:10 +08:00			`rpcClient, err := rpc.SharedRPC()`
			`if err != nil {`
			`return false`
			`}`
			`_, err = rpcClient.LoginSessionRPC().DeleteLoginSession(rpcClient.Context(0), &pb.DeleteLoginSessionRequest{Sid: sid})`
使用数据库存储SESSION 2023-02-04 15:18:26 +08:00			`if err != nil {`
			`logs.Println("SESSION", "delete '"+sid+"' failed: "+err.Error())`
			`}`
			`return true`
			`}`