Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

DEV: correct implementation of expiry api 

Previously we were always hard-coding expiry, this allows the secure session
to correctly handle custom expiry times

Also adds a ttl method for looking up time to live
This commit is contained in:
Sam Saffron 2019-11-11 11:18:12 +11:00
parent bf0ef73286
commit 91daafc674
2 changed files with 17 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/secure_session.rb
View File

@ -16,10 +16,14 @@ class SecureSession
def set(key, val, expires: nil) def set(key, val, expires: nil)
expires ||= SecureSession.expiry expires ||= SecureSession.expiry
$redis.setex(prefixed_key(key), SecureSession.expiry.to_i, val.to_s) $redis.setex(prefixed_key(key), expires.to_i, val.to_s)
true true
end end
def ttl(key)
$redis.ttl(prefixed_key(key))
end
def [](key) def [](key)
$redis.get(prefixed_key(key)) $redis.get(prefixed_key(key))
end end

12
spec/components/secure_session_spec.rb
View File

@ -14,4 +14,16 @@ describe SecureSession do
s["hello"] = nil s["hello"] = nil
expect(s["hello"]).to eq(nil) expect(s["hello"]).to eq(nil)
end end
it "can override expiry" do
s = SecureSession.new("abc")
key = SecureRandom.hex
s.set(key, "test2", expires: 5.minutes)
expect(s.ttl(key)).to be_within(1.second).of (5.minutes)
key = SecureRandom.hex
s.set(key, "test2")
expect(s.ttl(key)).to be_within(1.second).of (SecureSession.expiry)
end
end end