2016-08-19 12:17:33 +02:00
|
|
|
package mysqlstore
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"database/sql"
|
|
|
|
|
"log"
|
2017-08-06 21:09:47 +02:00
|
|
|
"strconv"
|
|
|
|
|
"strings"
|
2016-08-19 12:17:33 +02:00
|
|
|
"time"
|
|
|
|
|
)
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// MySQLStore represents the session store.
|
2016-08-19 12:17:33 +02:00
|
|
|
type MySQLStore struct {
|
|
|
|
|
*sql.DB
|
2017-08-06 21:09:47 +02:00
|
|
|
version string
|
2016-08-24 16:04:31 +02:00
|
|
|
stopCleanup chan bool
|
2016-08-19 12:17:33 +02:00
|
|
|
}
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// New returns a new MySQLStore instance, with a background cleanup goroutine
|
|
|
|
|
// that runs every 5 minutes to remove expired session data.
|
|
|
|
|
func New(db *sql.DB) *MySQLStore {
|
|
|
|
|
return NewWithCleanupInterval(db, 5*time.Minute)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// NewWithCleanupInterval returns a new MySQLStore instance. The cleanupInterval
|
|
|
|
|
// parameter controls how frequently expired session data is removed by the
|
|
|
|
|
// background cleanup goroutine. Setting it to 0 prevents the cleanup goroutine
|
|
|
|
|
// from running (i.e. expired sessions will not be removed).
|
|
|
|
|
func NewWithCleanupInterval(db *sql.DB, cleanupInterval time.Duration) *MySQLStore {
|
2017-08-06 21:09:47 +02:00
|
|
|
m := &MySQLStore{
|
|
|
|
|
DB: db,
|
|
|
|
|
version: getVersion(db),
|
|
|
|
|
}
|
|
|
|
|
|
2016-08-24 16:04:31 +02:00
|
|
|
if cleanupInterval > 0 {
|
|
|
|
|
go m.startCleanup(cleanupInterval)
|
2016-08-19 12:17:33 +02:00
|
|
|
}
|
2017-08-06 21:09:47 +02:00
|
|
|
|
2016-08-19 12:17:33 +02:00
|
|
|
return m
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// Find returns the data for a given session token from the MySQLStore instance.
|
|
|
|
|
// If the session token is not found or is expired, the returned exists flag will
|
|
|
|
|
// be set to false.
|
2016-08-19 12:17:33 +02:00
|
|
|
func (m *MySQLStore) Find(token string) ([]byte, bool, error) {
|
|
|
|
|
var b []byte
|
2017-08-06 21:09:47 +02:00
|
|
|
var stmt string
|
|
|
|
|
|
|
|
|
|
if compareVersion("5.6.4", m.version) >= 0 {
|
|
|
|
|
stmt = "SELECT data FROM sessions WHERE token = ? AND UTC_TIMESTAMP(6) < expiry"
|
|
|
|
|
} else {
|
|
|
|
|
stmt = "SELECT data FROM sessions WHERE token = ? AND UTC_TIMESTAMP < expiry"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
row := m.DB.QueryRow(stmt, token)
|
2016-08-19 12:17:33 +02:00
|
|
|
err := row.Scan(&b)
|
|
|
|
|
if err == sql.ErrNoRows {
|
|
|
|
|
return nil, false, nil
|
|
|
|
|
} else if err != nil {
|
|
|
|
|
return nil, false, err
|
|
|
|
|
}
|
|
|
|
|
return b, true, nil
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// Commit adds a session token and data to the MySQLStore instance with the given
|
|
|
|
|
// expiry time. If the session token already exists, then the data and expiry
|
|
|
|
|
// time are updated.
|
|
|
|
|
func (m *MySQLStore) Commit(token string, b []byte, expiry time.Time) error {
|
2016-08-19 12:17:33 +02:00
|
|
|
_, err := m.DB.Exec("INSERT INTO sessions (token, data, expiry) VALUES (?, ?, ?) ON DUPLICATE KEY UPDATE data = VALUES(data), expiry = VALUES(expiry)", token, b, expiry.UTC())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// Delete removes a session token and corresponding data from the MySQLStore
|
|
|
|
|
// instance.
|
2016-08-19 12:17:33 +02:00
|
|
|
func (m *MySQLStore) Delete(token string) error {
|
|
|
|
|
_, err := m.DB.Exec("DELETE FROM sessions WHERE token = ?", token)
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 19:23:50 +01:00
|
|
|
// All returns a map containing the token and data for all active (i.e.
|
|
|
|
|
// not expired) sessions in the MySQLStore instance.
|
|
|
|
|
func (m *MySQLStore) All() (map[string][]byte, error) {
|
|
|
|
|
var stmt string
|
|
|
|
|
|
|
|
|
|
if compareVersion("5.6.4", m.version) >= 0 {
|
|
|
|
|
stmt = "SELECT token, data FROM sessions WHERE UTC_TIMESTAMP(6) < expiry"
|
|
|
|
|
} else {
|
|
|
|
|
stmt = "SELECT token, data FROM sessions WHERE UTC_TIMESTAMP < expiry"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rows, err := m.DB.Query(stmt)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
defer rows.Close()
|
|
|
|
|
|
|
|
|
|
sessions := make(map[string][]byte)
|
|
|
|
|
|
|
|
|
|
for rows.Next() {
|
|
|
|
|
var (
|
|
|
|
|
token string
|
|
|
|
|
data []byte
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
err = rows.Scan(&token, &data)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sessions[token] = data
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = rows.Err()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return sessions, nil
|
|
|
|
|
}
|
|
|
|
|
|
2016-08-24 16:04:31 +02:00
|
|
|
func (m *MySQLStore) startCleanup(interval time.Duration) {
|
|
|
|
|
m.stopCleanup = make(chan bool)
|
2016-08-19 12:17:33 +02:00
|
|
|
ticker := time.NewTicker(interval)
|
|
|
|
|
for {
|
|
|
|
|
select {
|
|
|
|
|
case <-ticker.C:
|
|
|
|
|
err := m.deleteExpired()
|
|
|
|
|
if err != nil {
|
|
|
|
|
log.Println(err)
|
|
|
|
|
}
|
2016-08-24 16:04:31 +02:00
|
|
|
case <-m.stopCleanup:
|
2016-08-19 12:17:33 +02:00
|
|
|
ticker.Stop()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-28 07:30:35 +02:00
|
|
|
// StopCleanup terminates the background cleanup goroutine for the MySQLStore
|
|
|
|
|
// instance. It's rare to terminate this; generally MySQLStore instances and
|
|
|
|
|
// their cleanup goroutines are intended to be long-lived and run for the lifetime
|
|
|
|
|
// of your application.
|
2016-08-24 16:04:31 +02:00
|
|
|
//
|
2019-04-28 07:30:35 +02:00
|
|
|
// There may be occasions though when your use of the MySQLStore is transient.
|
|
|
|
|
// An example is creating a new MySQLStore instance in a test function. In this
|
|
|
|
|
// scenario, the cleanup goroutine (which will run forever) will prevent the
|
|
|
|
|
// MySQLStore object from being garbage collected even after the test function
|
|
|
|
|
// has finished. You can prevent this by manually calling StopCleanup.
|
2016-08-24 16:04:31 +02:00
|
|
|
func (m *MySQLStore) StopCleanup() {
|
|
|
|
|
if m.stopCleanup != nil {
|
|
|
|
|
m.stopCleanup <- true
|
2016-08-19 12:17:33 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MySQLStore) deleteExpired() error {
|
2017-08-06 21:09:47 +02:00
|
|
|
var stmt string
|
|
|
|
|
|
|
|
|
|
if compareVersion("5.6.4", m.version) >= 0 {
|
|
|
|
|
stmt = "DELETE FROM sessions WHERE expiry < UTC_TIMESTAMP(6)"
|
|
|
|
|
} else {
|
|
|
|
|
stmt = "DELETE FROM sessions WHERE expiry < UTC_TIMESTAMP"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_, err := m.DB.Exec(stmt)
|
2016-08-19 12:17:33 +02:00
|
|
|
return err
|
|
|
|
|
}
|
2017-08-06 21:09:47 +02:00
|
|
|
|
|
|
|
|
func getVersion(db *sql.DB) string {
|
|
|
|
|
var version string
|
|
|
|
|
row := db.QueryRow("SELECT VERSION()")
|
|
|
|
|
err := row.Scan(&version)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return ""
|
|
|
|
|
}
|
|
|
|
|
return strings.Split(version, "-")[0]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Based on https://stackoverflow.com/a/26729704
|
|
|
|
|
func compareVersion(a, b string) (ret int) {
|
|
|
|
|
as := strings.Split(a, ".")
|
|
|
|
|
bs := strings.Split(b, ".")
|
|
|
|
|
loopMax := len(bs)
|
|
|
|
|
if len(as) > len(bs) {
|
|
|
|
|
loopMax = len(as)
|
|
|
|
|
}
|
|
|
|
|
for i := 0; i < loopMax; i++ {
|
|
|
|
|
var x, y string
|
|
|
|
|
if len(as) > i {
|
|
|
|
|
x = as[i]
|
|
|
|
|
}
|
|
|
|
|
if len(bs) > i {
|
|
|
|
|
y = bs[i]
|
|
|
|
|
}
|
|
|
|
|
xi, _ := strconv.Atoi(x)
|
|
|
|
|
yi, _ := strconv.Atoi(y)
|
|
|
|
|
if xi > yi {
|
|
|
|
|
ret = -1
|
|
|
|
|
} else if xi < yi {
|
|
|
|
|
ret = 1
|
|
|
|
|
}
|
|
|
|
|
if ret != 0 {
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
