265a8dd16f
refs 319f251ad2
- this helps debugging because all middleware in the stack will have a
function name, so it'll show up instead of `<anonymous>`
56 lines
1.3 KiB
Markdown
56 lines
1.3 KiB
Markdown
# Session Service
|
|
|
|
## Usage
|
|
|
|
```js
|
|
const SessionService = require('@tryghost/session-service');
|
|
|
|
const sessionService = SessionService({
|
|
async getSession(req, res) {
|
|
return new Promise((resolve, reject) => {
|
|
require('express-session')(config)(req, res, (err) => {
|
|
if (err) {
|
|
reject(err);
|
|
}
|
|
resolve(req.session);
|
|
})
|
|
})
|
|
},
|
|
async findUserById({id}) {
|
|
return UserModel.findUserById(id);
|
|
},
|
|
getOriginOfRequest(req) {
|
|
return req.headers.origin;
|
|
}
|
|
});
|
|
|
|
app.use(async function sessionMiddleware(req, res, next) {
|
|
try {
|
|
const user = await sessionService.getUserForSession(req, res);
|
|
req.user = user;
|
|
next();
|
|
} catch (err) {
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
app.post('/login', async (req, res) => {
|
|
try {
|
|
const user = await UserModel.verify(req.body);
|
|
await sessionService.createSessionForUser(req, res, user);
|
|
res.redirect('/home');
|
|
} catch (err) {
|
|
return next(err);
|
|
}
|
|
});
|
|
|
|
app.post('/logout', async (req, res) => {
|
|
try {
|
|
await sessionService.destroyCurrentSession(req, res);
|
|
res.redirect('/login');
|
|
} catch (err) {
|
|
return next(err);
|
|
}
|
|
});
|
|
```
|