qtwebapp/api/httpsessionstore_8cpp_source.html

 #include "httpsessionstore.h"

 #include <QDateTime>

 #include <QUuid>


 using namespace stefanfrings;


 HttpSessionStore::HttpSessionStore(const QSettings *settings, QObject* parent)

     :QObject(parent)

 {

     this->settings=settings;

     connect(&cleanupTimer,SIGNAL(timeout()),this,SLOT(sessionTimerEvent()));

     cleanupTimer.start(60000);

     cookieName=settings->value("cookieName","sessionid").toByteArray();

     expirationTime=settings->value("expirationTime",3600000).toInt();

     qDebug("HttpSessionStore: Sessions expire after %i milliseconds",expirationTime);

 }


 HttpSessionStore::~HttpSessionStore()

 {

     cleanupTimer.stop();

 }


 QByteArray HttpSessionStore::getSessionId(HttpRequest& request, HttpResponse& response)

 {

     // The session ID in the response has priority because this one will be used in the next request.

     mutex.lock();

     // Get the session ID from the response cookie

     QByteArray sessionId=response.getCookies().value(cookieName).getValue();

     if (sessionId.isEmpty())

     {

         // Get the session ID from the request cookie

         sessionId=request.getCookie(cookieName);

     }

     // Clear the session ID if there is no such session in the storage.

     if (!sessionId.isEmpty())

     {

         if (!sessions.contains(sessionId))

         {

             qDebug("HttpSessionStore: received invalid session cookie with ID %s",sessionId.data());

             sessionId.clear();

         }

     }

     mutex.unlock();

     return sessionId;

 }


 HttpSession HttpSessionStore::getSession(HttpRequest& request, HttpResponse& response, bool allowCreate)

 {

     QByteArray sessionId=getSessionId(request,response);

     mutex.lock();

     if (!sessionId.isEmpty())

     {

         HttpSession session=sessions.value(sessionId);

         if (!session.isNull())

         {

             mutex.unlock();

             // Refresh the session cookie

             QByteArray cookieName=settings->value("cookieName","sessionid").toByteArray();

             QByteArray cookiePath=settings->value("cookiePath").toByteArray();

             QByteArray cookieComment=settings->value("cookieComment").toByteArray();

             QByteArray cookieDomain=settings->value("cookieDomain").toByteArray();

             response.setCookie(HttpCookie(cookieName,session.getId(),expirationTime/1000,

                                           cookiePath,cookieComment,cookieDomain,false,false,"Lax"));

             session.setLastAccess();

             return session;

         }

     }

     // Need to create a new session

     if (allowCreate)

     {

         QByteArray cookieName=settings->value("cookieName","sessionid").toByteArray();

         QByteArray cookiePath=settings->value("cookiePath").toByteArray();

         QByteArray cookieComment=settings->value("cookieComment").toByteArray();

         QByteArray cookieDomain=settings->value("cookieDomain").toByteArray();

         HttpSession session(true);

         qDebug("HttpSessionStore: create new session with ID %s",session.getId().data());

         sessions.insert(session.getId(),session);

         response.setCookie(HttpCookie(cookieName,session.getId(),expirationTime/1000,

                                       cookiePath,cookieComment,cookieDomain,false,false,"Lax"));

         mutex.unlock();

         return session;

     }

     // Return a null session

     mutex.unlock();

     return HttpSession();

 }


 HttpSession HttpSessionStore::getSession(const QByteArray id)

 {

     mutex.lock();

     HttpSession session=sessions.value(id);

     mutex.unlock();

     session.setLastAccess();

     return session;

 }


 void HttpSessionStore::sessionTimerEvent()

 {

     mutex.lock();

     qint64 now=QDateTime::currentMSecsSinceEpoch();

     QMap<QByteArray,HttpSession>::iterator i = sessions.begin();

     while (i != sessions.end())

     {

         QMap<QByteArray,HttpSession>::iterator prev = i;

         ++i;

         HttpSession session=prev.value();

         qint64 lastAccess=session.getLastAccess();

         if (now-lastAccess>expirationTime)

         {

             qDebug("HttpSessionStore: session %s expired",session.getId().data());

             emit sessionDeleted(session.getId());

             sessions.erase(prev);

         }

     }

     mutex.unlock();

 }


 void HttpSessionStore::removeSession(HttpSession session)

 {

     mutex.lock();

     emit sessionDeleted(session.getId());

     sessions.remove(session.getId());

     mutex.unlock();

 }

stefanfrings::HttpCookie
HTTP cookie as defined in RFC 2109.
Definition: httpcookie.h:21

stefanfrings::HttpRequest
This object represents a single HTTP request.
Definition: httprequest.h:37

stefanfrings::HttpRequest::getCookie
QByteArray getCookie(const QByteArray &name) const
Get the value of a cookie.
Definition: httprequest.cpp:559

stefanfrings::HttpResponse
This object represents a HTTP response, used to return something to the web client.
Definition: httpresponse.h:36

stefanfrings::HttpResponse::getCookies
QMap< QByteArray, HttpCookie > & getCookies()
Get the map of cookies.
Definition: httpresponse.cpp:178

stefanfrings::HttpResponse::setCookie
void setCookie(const HttpCookie &cookie)
Set a cookie.
Definition: httpresponse.cpp:168

stefanfrings::HttpSessionStore::~HttpSessionStore
virtual ~HttpSessionStore()
Destructor.
Definition: httpsessionstore.cpp:23

stefanfrings::HttpSessionStore::sessions
QMap< QByteArray, HttpSession > sessions
Storage for the sessions.
Definition: httpsessionstore.h:92

stefanfrings::HttpSessionStore::removeSession
void removeSession(const HttpSession session)
Delete a session.
Definition: httpsessionstore.cpp:125

stefanfrings::HttpSessionStore::HttpSessionStore
HttpSessionStore(const QSettings *settings, QObject *parent=nullptr)
Constructor.
Definition: httpsessionstore.cpp:12

stefanfrings::HttpSessionStore::getSessionId
QByteArray getSessionId(HttpRequest &request, HttpResponse &response)
Get the ID of the current HTTP session, if it is valid.
Definition: httpsessionstore.cpp:28

stefanfrings::HttpSessionStore::sessionDeleted
void sessionDeleted(const QByteArray &sessionId)
Emitted when the session is deleted.

stefanfrings::HttpSessionStore::getSession
HttpSession getSession(HttpRequest &request, HttpResponse &response, const bool allowCreate=true)
Get the session of a HTTP request, eventually create a new one.
Definition: httpsessionstore.cpp:52

stefanfrings::HttpSession
This class stores data for a single HTTP session.
Definition: httpsession.h:23

stefanfrings::HttpSession::isNull
bool isNull() const
Null sessions cannot store data.
Definition: httpsession.cpp:107

stefanfrings::HttpSession::setLastAccess
void setLastAccess()
Set the timestamp of last access, to renew the timeout period.
Definition: httpsession.cpp:180

stefanfrings::HttpSession::getId
QByteArray getId() const
Get the unique ID of this session.
Definition: httpsession.cpp:95

stefanfrings::HttpSession::getLastAccess
qint64 getLastAccess() const
Get the timestamp of last access.
Definition: httpsession.cpp:167

httpsessionstore.h