app/vppn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 9 Wiki Activity

Audit changes.

Browse Source
This commit is contained in:
jdl
2026-06-13 18:03:44 +02:00
parent 0cd5982a3f
commit 8983c0d651
4 changed files with 19 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
hub/api/api.go
View File

@@ -134,14 +134,25 @@ func (a *API) Session_SignIn(pwd string) (Session, error) {
defer a.sessionsMu.Unlock() defer a.sessionsMu.Unlock()
s := &Session{ s := &Session{
SessionID: idgen.NewToken(), SessionID: idgen.NewToken(),
SignedIn: true,
CreatedAt: time.Now(),
LastSeenAt: time.Now(), LastSeenAt: time.Now(),
} }
a.sessions[s.SessionID] = s a.sessions[s.SessionID] = s
return *s, nil return *s, nil
} }
func (a *API) Session_InvalidateAll() Session {
a.sessionsMu.Lock()
defer a.sessionsMu.Unlock()
clear(a.sessions)
s := &Session{
SessionID: idgen.NewToken(),
LastSeenAt: time.Now(),
}
a.sessions[s.SessionID] = s
return *s
}
// sweepSessions periodically evicts sessions past their TTL. Without it, a // sweepSessions periodically evicts sessions past their TTL. Without it, a
// signed-in session whose ID is never presented again would linger forever // signed-in session whose ID is never presented again would linger forever
// (Session_Get only evicts on a lookup of that same ID). // (Session_Get only evicts on a lookup of that same ID).

2
hub/api/types.go
View File

@@ -11,7 +11,5 @@ type Peer = db.Peer
type Session struct { type Session struct {
SessionID string SessionID string
SignedIn bool
CreatedAt time.Time
LastSeenAt time.Time LastSeenAt time.Time
} }

4
hub/handler.go
View File

@@ -35,7 +35,7 @@ func (app *App) handlePub(pattern string, fn handlerFunc) {
func (app *App) handleNotSignedIn(pattern string, fn handlerFunc) { func (app *App) handleNotSignedIn(pattern string, fn handlerFunc) {
app.handlePub(pattern, func(s *api.Session, w http.ResponseWriter, r *http.Request) error { app.handlePub(pattern, func(s *api.Session, w http.ResponseWriter, r *http.Request) error {
if s.SignedIn { if s.SessionID != "" {
http.Redirect(w, r, "/", http.StatusSeeOther) http.Redirect(w, r, "/", http.StatusSeeOther)
return nil return nil
} }
@@ -45,7 +45,7 @@ func (app *App) handleNotSignedIn(pattern string, fn handlerFunc) {
func (app *App) handleSignedIn(pattern string, fn handlerFunc) { func (app *App) handleSignedIn(pattern string, fn handlerFunc) {
app.handlePub(pattern, func(s *api.Session, w http.ResponseWriter, r *http.Request) error { app.handlePub(pattern, func(s *api.Session, w http.ResponseWriter, r *http.Request) error {
if !s.SignedIn { if s.SessionID == "" {
http.Redirect(w, r, "/", http.StatusSeeOther) http.Redirect(w, r, "/", http.StatusSeeOther)
return nil return nil
} }

5
hub/handlers.go
View File

@@ -16,7 +16,7 @@ import (
) )
func (a *App) _root(s *api.Session, w http.ResponseWriter, r *http.Request) error { func (a *App) _root(s *api.Session, w http.ResponseWriter, r *http.Request) error {
if s.SignedIn { if s.SessionID != "" {
return a.redirect(w, r, "/admin/network/list/") return a.redirect(w, r, "/admin/network/list/")
} else { } else {
return a.redirect(w, r, "/sign-in/") return a.redirect(w, r, "/sign-in/")
@@ -269,6 +269,9 @@ func (a *App) _adminPasswordSubmit(s *api.Session, w http.ResponseWriter, r *htt
return err return err
} }
*s = a.api.Session_InvalidateAll()
a.setCookie(w, sessionIDCookieName, s.SessionID)
return a.redirect(w, r, "/admin/network/list/") return a.redirect(w, r, "/admin/network/list/")
} }