store sessions in db

2025-11-13 00:02:37 +10:00 · 2025-03-14 11:35:12 -04:00
parent 61764e81b8
commit cf0af15854
3 changed files with 88 additions and 2 deletions
--- a/prisma/schema/auth.prisma
+++ b/prisma/schema/auth.prisma
@ -50,3 +50,8 @@ model Certificate {

    blacklisted Boolean @default(false)
 }
+
+model Session {
+    token String @id
+    data  Json
+}
--- a/server/internal/session/db.ts
+++ b/server/internal/session/db.ts
@ -0,0 +1,79 @@
+import { json } from "stream/consumers";
+import prisma from "../db/database";
+import { Session, SessionProvider } from "./types";
+import { Prisma } from "@prisma/client";
+
+export default function createDBSessionHandler(): SessionProvider {
+  return {
+    async setSession(token, data) {
+      //   const strData = JSON.stringify(data);
+      await prisma.session.upsert({
+        where: {
+          token,
+        },
+        create: {
+          token,
+          data,
+        },
+        update: {
+          data,
+        },
+      });
+      return true;
+    },
+    async updateSession(token, key, data) {
+      const newObj: { [key: string]: any } = {};
+      newObj[key] = data;
+
+      const session = await prisma.session.upsert({
+        where: {
+          token,
+        },
+        create: {
+          token,
+          data: newObj,
+        },
+        update: {},
+      });
+
+      // if json object and not arrary, update session
+      if (
+        typeof session.data === "object" &&
+        !Array.isArray(session.data) &&
+        session.data !== null
+      ) {
+        // means we set it above
+        if (session.data[key] === data) return true;
+
+        // else we need to set it ourselves
+        (session.data as Prisma.JsonObject)[key] = data;
+        await prisma.session.update({
+          where: {
+            token,
+          },
+          data: {
+            data: session.data,
+          },
+        });
+        return true;
+      }
+      return false;
+    },
+    async getSession<T>(token: string) {
+      const result = await prisma.session.findUnique({
+        where: {
+          token,
+        },
+      });
+      if (result === null) return undefined;
+      return result.data as T;
+    },
+    async clearSession(token) {
+      await prisma.session.delete({
+        where: {
+          token,
+        },
+      });
+    },
+  };
+}
--- a/server/internal/session/index.ts
+++ b/server/internal/session/index.ts
@ -6,6 +6,7 @@ import { v4 as uuidv4 } from "uuid";
 import moment from "moment";
 import { parse as parseCookies } from "cookie-es";
 import { MinimumRequestObject } from "~/server/h3";
+import createDBSessionHandler from "./db";

 /*
 This implementation may need work.
@ -24,11 +25,12 @@ export class SessionHandler {

  constructor() {
    // Create a new provider
-    this.sessionProvider = createMemorySessionProvider();
+    this.sessionProvider = createDBSessionHandler();
+    // this.sessionProvider = createMemorySessionProvider();
  }

  private getSessionToken(request: MinimumRequestObject | undefined) {
-    if(!request) throw new Error("Native web request not available");
+    if (!request) throw new Error("Native web request not available");
    const cookieHeader = request.headers.get("Cookie");
    if (!cookieHeader) return undefined;
    const cookies = parseCookies(cookieHeader);