Merge pull request #3 from go-http-utils/develop/memorystore

zensh · web-flow · commit 243fbd71faca · 2017-03-07T20:07:20.000+08:00
Support memory store
diff --git a/memorystore.go b/memorystore.go
@@ -0,0 +1,132 @@
+package sessions
+
+import (
+	"crypto/rand"
+	"fmt"
+	"io"
+	"sync"
+	"time"
+
+	"github.com/go-http-utils/cookie"
+)
+
+// NewMemoryStore returns an MemoryStore instance
+func NewMemoryStore(options ...*Options) (store *MemoryStore) {
+	opts := &cookie.Options{
+		Path:     "/",
+		HTTPOnly: true,
+		Signed:   true,
+		MaxAge:   24 * 60 * 60,
+	}
+	if len(options) > 0 && options[0] != nil {
+		temp := options[0]
+		opts.Path = temp.Path
+		opts.Domain = temp.Domain
+		opts.MaxAge = temp.MaxAge
+		opts.Secure = temp.Secure
+		opts.HTTPOnly = temp.HTTPOnly
+	}
+	store = &MemoryStore{opts: opts, ticker: time.NewTicker(time.Second), store: make(map[string]*sessionValue)}
+	go store.cleanCache()
+	return
+}
+
+type sessionValue struct {
+	expired time.Time
+	session string
+}
+
+// MemoryStore using memory to store sessions base on secure cookies.
+type MemoryStore struct {
+	opts   *cookie.Options
+	store  map[string]*sessionValue
+	ticker *time.Ticker
+	lock   sync.Mutex
+}
+
+// Load a session by name and any kind of stores
+func (m *MemoryStore) Load(name string, session Sessions, cookie *cookie.Cookies) error {
+	sid, err := cookie.Get(name, m.opts.Signed)
+	var result string
+	if sid != "" {
+		m.lock.Lock()
+		if val, ok := m.store[sid]; ok {
+			result = val.session
+		}
+		m.lock.Unlock()
+	}
+	if result != "" {
+		err = Decode(result, &session)
+	}
+	session.Init(name, sid, cookie, m, result)
+	return err
+}
+
+// Save session to Response's cookie
+func (m *MemoryStore) Save(session Sessions) (err error) {
+	val, err := Encode(session)
+	if err != nil || !session.IsChanged(val) {
+		return
+	}
+	sid := session.GetSID()
+	if sid == "" {
+		sid, _ = newUUID()
+	}
+	m.lock.Lock()
+	defer m.lock.Unlock()
+	m.store[sid] = &sessionValue{
+		session: val,
+		expired: time.Now().Add(time.Duration(m.opts.MaxAge) * time.Second),
+	}
+	session.GetCookie().Set(session.GetName(), sid, m.opts)
+	return
+}
+
+// Len ...
+func (m *MemoryStore) Len() int {
+	m.lock.Lock()
+	defer m.lock.Unlock()
+	return len(m.store)
+}
+func (m *MemoryStore) cleanCache() {
+	for range m.ticker.C {
+		m.clean()
+	}
+}
+func (m *MemoryStore) clean() {
+	m.lock.Lock()
+	defer m.lock.Unlock()
+	start := time.Now()
+	expireTime := start.Add(time.Millisecond * 100)
+	frequency := 24
+	var expired int
+	for {
+	label:
+		for i := 0; i < frequency; i++ {
+			for key, value := range m.store {
+				if value.expired.Before(start) {
+					delete(m.store, key)
+					expired++
+				}
+				break
+			}
+		}
+		if expireTime.Before(time.Now()) {
+			return
+		}
+		if expired > frequency/4 {
+			expired = 0
+			goto label
+		}
+		return
+	}
+}
+
+// newUUID generates a random UUID according to RFC 4122
+func newUUID() (string, error) {
+	uuid := make([]byte, 16)
+	io.ReadFull(rand.Reader, uuid)
+	uuid[8] = uuid[8]&^0xc0 | 0x80
+	uuid[6] = uuid[6]&^0xf0 | 0x40
+	return fmt.Sprintf("%x%x%x%x%x", uuid[0:4], uuid[4:6], uuid[6:8], uuid[8:10], uuid[10:]), nil
+}
diff --git a/memorystore_test.go b/memorystore_test.go
@@ -0,0 +1,249 @@
+package sessions_test
+
+import (
+	"crypto/rand"
+	"encoding/hex"
+	"net/http"
+	"net/http/httptest"
+	"sync"
+	"testing"
+
+	"time"
+
+	"github.com/go-http-utils/cookie"
+	"github.com/go-http-utils/cookie-session"
+	"github.com/stretchr/testify/assert"
+)
+
+var (
+	username       = "mushroom"
+	useage   int64 = 99
+
+	secondUserName       = "mushroomnew"
+	secondUsage    int64 = 100
+	store                = sessions.NewMemoryStore()
+)
+
+func TestMemoryStore(t *testing.T) {
+
+	SessionName := "teambition"
+	NewSessionName := "teambition-new"
+	SessionKeys := []string{"keyxxx"}
+
+	t.Run("Sessions use default options that should be", func(t *testing.T) {
+		assert := assert.New(t)
+		req, err := http.NewRequest("GET", "/", nil)
+		recorder := httptest.NewRecorder()
+
+		handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+			err = session.Save()
+			assert.Nil(err)
+			assert.True(session.IsNew())
+			assert.True(session.GetSID() == "")
+		})
+		handler.ServeHTTP(recorder, req)
+
+		//====== reuse session =====
+		req, err = http.NewRequest("GET", "/", nil)
+		migrateCookies(recorder, req)
+
+		handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+
+			assert.Equal(username, session.Name)
+			assert.Equal(int64(useage), session.Age)
+			assert.False(session.IsNew())
+			assert.True(session.GetSID() != "")
+		})
+		handler.ServeHTTP(recorder, req)
+
+		//====== reuse session=====
+
+		req, err = http.NewRequest("GET", "/", nil)
+		migrateCookies(recorder, req)
+
+		handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+
+			assert.Equal(username, session.Name)
+			assert.Equal(useage, session.Age)
+			assert.False(session.IsNew())
+			assert.True(session.GetSID() != "")
+		})
+		handler.ServeHTTP(recorder, req)
+	})
+	t.Run("Sessions with sign session that should be", func(t *testing.T) {
+		assert := assert.New(t)
+		recorder := httptest.NewRecorder()
+		req, _ := http.NewRequest("GET", "/", nil)
+
+		handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+			session.Save()
+
+			session = &Session{Meta: &sessions.Meta{}}
+			store.Load(NewSessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = secondUserName
+			session.Age = secondUsage
+			session.Save()
+
+		})
+		handler.ServeHTTP(recorder, req)
+
+		//====== reuse session =====
+		req, _ = http.NewRequest("GET", "/", nil)
+		migrateCookies(recorder, req)
+
+		handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+
+			assert.Equal(username, session.Name)
+			assert.Equal(useage, session.Age)
+
+			session = &Session{Meta: &sessions.Meta{}}
+			store.Load(NewSessionName, session, cookie.New(w, r, SessionKeys...))
+
+			assert.Equal(secondUserName, session.Name)
+			assert.Equal(secondUsage, session.Age)
+
+		})
+		handler.ServeHTTP(recorder, req)
+
+	})
+	t.Run("Sessions with Name() and Store()  that should be", func(t *testing.T) {
+		assert := assert.New(t)
+		recorder := httptest.NewRecorder()
+		req, _ := http.NewRequest("GET", "/", nil)
+
+		store := sessions.NewMemoryStore(&sessions.Options{
+			Path:     "xxx.com",
+			HTTPOnly: true,
+			MaxAge:   64,
+			Domain:   "ttt.com",
+			Secure:   true,
+		})
+
+		handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+
+			session.Save()
+
+			assert.Equal(SessionName, session.GetName())
+			assert.NotNil(session.GetStore())
+
+		})
+		handler.ServeHTTP(recorder, req)
+		cookies, _ := getCookie(SessionName, recorder)
+		assert.Equal("ttt.com", cookies.Domain)
+		assert.Equal("xxx.com", cookies.Path)
+		assert.Equal(true, cookies.HttpOnly)
+		assert.Equal(64, cookies.MaxAge)
+		assert.Equal(true, cookies.Secure)
+
+	})
+	t.Run("Sessions donn't override old value when seting same value that should be", func(t *testing.T) {
+		assert := assert.New(t)
+		req, err := http.NewRequest("GET", "/", nil)
+		assert.Nil(err)
+		recorder := httptest.NewRecorder()
+
+		handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+
+			session.Save()
+		})
+		handler.ServeHTTP(recorder, req)
+
+		//====== reuse session =====
+		req, err = http.NewRequest("GET", "/", nil)
+		migrateCookies(recorder, req)
+
+		handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+			session.Save()
+		})
+		handler.ServeHTTP(recorder, req)
+	})
+	t.Run("Sessions with high goroutine should be", func(t *testing.T) {
+		assert := assert.New(t)
+		req, err := http.NewRequest("GET", "/", nil)
+		assert.Nil(err)
+		recorder := httptest.NewRecorder()
+
+		store := sessions.NewMemoryStore(&sessions.Options{
+			Path:     "xxx.com",
+			HTTPOnly: true,
+			MaxAge:   2,
+			Domain:   "ttt.com",
+			Secure:   true,
+		})
+
+		handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+			session.Name = username
+			session.Age = useage
+			session.Save()
+
+			var wg sync.WaitGroup
+			wg.Add(10000)
+			for i := 0; i < 10000; i++ {
+				go func() {
+					newid := genID()
+					sess := &Session{Meta: &sessions.Meta{}}
+					store.Load(newid, sess, cookie.New(w, r, SessionKeys...))
+					sess.Name = username
+					sess.Age = useage
+					sess.Save()
+					wg.Done()
+				}()
+			}
+			wg.Wait()
+		})
+		handler.ServeHTTP(recorder, req)
+		time.Sleep(time.Second * 3)
+		assert.Equal(0, store.Len())
+		//====== reuse session =====
+		req, err = http.NewRequest("GET", "/", nil)
+		migrateCookies(recorder, req)
+
+		handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			session := &Session{Meta: &sessions.Meta{}}
+			store.Load(SessionName, session, cookie.New(w, r, SessionKeys...))
+
+			assert.Equal("", session.Name)
+			assert.Equal(int64(0), session.Age)
+		})
+		handler.ServeHTTP(recorder, req)
+	})
+}
+func genID() string {
+	buf := make([]byte, 12)
+	_, err := rand.Read(buf)
+	if err != nil {
+		panic(err)
+	}
+	return hex.EncodeToString(buf)
+}
