1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
|
require 'rack/utils'
require 'rack/request'
require 'rack/session/abstract/id'
require 'action_dispatch/middleware/cookies'
require 'active_support/core_ext/object/blank'
module ActionDispatch
module Session
class SessionRestoreError < StandardError #:nodoc:
attr_reader :original_exception
def initialize(const_error)
@original_exception = const_error
super("Session contains objects whose class definition isn't available.\n" +
"Remember to require the classes for all objects kept in the session.\n" +
"(Original exception: #{const_error.message} [#{const_error.class}])\n")
end
end
module Compatibility
def initialize(app, options = {})
options[:key] ||= '_session_id'
super
end
def generate_sid
sid = SecureRandom.hex(16)
sid.encode!('UTF-8')
sid
end
protected
def initialize_sid
@default_options.delete(:sidbits)
@default_options.delete(:secure_random)
end
end
module StaleSessionCheck
def load_session(env)
stale_session_check! { super }
end
def extract_session_id(env)
stale_session_check! { super }
end
def stale_session_check!
yield
rescue ArgumentError => argument_error
if argument_error.message =~ %r{undefined class/module ([\w:]*\w)}
begin
# Note that the regexp does not allow $1 to end with a ':'
$1.constantize
rescue LoadError, NameError => e
raise ActionDispatch::Session::SessionRestoreError, e, e.backtrace
end
retry
else
raise
end
end
end
class AbstractStore < Rack::Session::Abstract::ID
include Compatibility
include StaleSessionCheck
ENV_SESSION_KEY = Rack::Session::Abstract::ENV_SESSION_KEY # :nodoc:
ENV_SESSION_OPTIONS_KEY = Rack::Session::Abstract::ENV_SESSION_OPTIONS_KEY # :nodoc:
private
def prepare_session(env)
session_was = env[ENV_SESSION_KEY]
env[ENV_SESSION_KEY] = Request::Session.new(self, env)
env[ENV_SESSION_OPTIONS_KEY] = Request::Session::Options.new(self, env, @default_options)
env[ENV_SESSION_KEY].merge! session_was if session_was
end
def loaded_session?(session)
!session.is_a?(Request::Session) || session.loaded?
end
def set_cookie(env, session_id, cookie)
request = ActionDispatch::Request.new(env)
request.cookie_jar[key] = cookie
end
end
end
class Request
# SessionHash is responsible to lazily load the session from store.
class Session # :nodoc:
ENV_SESSION_KEY = Rack::Session::Abstract::ENV_SESSION_KEY # :nodoc:
ENV_SESSION_OPTIONS_KEY = Rack::Session::Abstract::ENV_SESSION_OPTIONS_KEY # :nodoc:
class Options #:nodoc:
def initialize(by, env, default_options)
@by = by
@env = env
@delegate = default_options
end
def [](key)
if key == :id
@delegate.fetch(key) {
@delegate[:id] = @by.send(:extract_session_id, @env)
}
else
@delegate[key]
end
end
def []=(k,v); @delegate[k] = v; end
def to_hash; @delegate.dup; end
def values_at(*args); @delegate.values_at(*args); end
end
def initialize(by, env)
@by = by
@env = env
@delegate = {}
@loaded = false
end
def destroy
clear
options = @env[ENV_SESSION_OPTIONS_KEY] if @env
options ||= {}
@by.send(:destroy_session, @env, options[:id], options) if @by
options[:id] = nil
@loaded = false
end
def [](key)
load_for_read!
@delegate[key.to_s]
end
def has_key?(key)
load_for_read!
@delegate.key?(key.to_s)
end
alias :key? :has_key?
alias :include? :has_key?
def []=(key, value)
load_for_write!
@delegate[key.to_s] = value
end
def clear
load_for_write!
@delegate.clear
end
def to_hash
load_for_read!
@delegate.dup.delete_if { |_,v| v.nil? }
end
def update(hash)
load_for_write!
@delegate.update stringify_keys(hash)
end
def delete(key)
load_for_write!
@delegate.delete key.to_s
end
def inspect
if loaded?
super
else
"#<#{self.class}:0x#{(object_id << 1).to_s(16)} not yet loaded>"
end
end
def exists?
return @exists if instance_variable_defined?(:@exists)
@exists = @by.send(:session_exists?, @env)
end
def loaded?
@loaded
end
def empty?
load_for_read!
@delegate.empty?
end
private
def load_for_read!
load! if !loaded? && exists?
end
def load_for_write!
load! unless loaded?
end
def load!
id, session = @by.send(:load_session, @env)
@env[ENV_SESSION_OPTIONS_KEY][:id] = id
@delegate.replace(stringify_keys(session))
@loaded = true
end
def stringify_keys(other)
hash = {}
other.each do |key, value|
hash[key.to_s] = value
end
hash
end
end
end
end
|