Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support session variables #3

Open
therealbstern opened this issue Aug 26, 2016 · 8 comments
Open

Support session variables #3

therealbstern opened this issue Aug 26, 2016 · 8 comments
Labels
enhancement question ❓

Comments

@therealbstern
Copy link
Collaborator

Right now, this module only supports authentication. Once that's out of the way, we can start looking at session variables (which might cause more lifetime problems).
@therealbstern
Copy link
Collaborator Author

This is a little out of scope; session variables are probably better handled by the owner.

@jolhoeft
Copy link
Owner

jolhoeft commented Oct 27, 2017
edited by therealbstern
Loading

One thing that is currently a little awkward is support for anonymous sessions. Would a connection struct that contained a SessionId and an Option<String> (for username) be useful? This struct would be readily hashable, so could easily used as a key into a session data collection. Applications not supporting anonymous sessions just reject anything with None for a username.

@therealbstern
Copy link
Collaborator Author

Hmm. I suppose it's possible to tell them apart, but it wasn't what I was expecting. This is probably worth doing, though.

@jolhoeft
Copy link
Owner

jolhoeft commented Oct 27, 2017 via email
edited by therealbstern
Loading

@therealbstern
Copy link
Collaborator Author

... We don't track the username right now. What you really want is a policy that allows anonymous logins. Right now, our naive policy allows this. I think this is application-level.

@jolhoeft
Copy link
Owner

We track the user that is associated with a ConnectionSignature, which is returned by the run method. That can be used as a key to store session information, although it can change, so is awkward on the application side. The get_user method returns the user logged in on that session, if any.

What I am thinking of is something to replace the run method, say get_connection, that returns an enum:

enum ConnectionType {
  Anonymous(ConnectionSignature),
  LoggedIn(ConnectionSignature, String),
}

We include the ConnectionString in the logged in case so the application can migrate information after the user logs in (or more likely, creates an account).

This can all be done on the application side now, but is a bit messy, and seems a common use case.

@therealbstern
Copy link
Collaborator Author

Hmm, this seems pretty reasonable. Do you want to grab it or should I do it?

@therealbstern
Copy link
Collaborator Author

I think it's a different issue, though. This issue is really for session variables.

@therealbstern therealbstern mentioned this issue Oct 27, 2017
Open
Repository owner deleted a comment from jolhoeft Feb 23, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement question ❓
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jolhoeft @therealbstern