我的书签
添加书签
移除书签session
The session middleware provides user session management for Flame instances, supporting various storage backends, including memory, file, PostgreSQL, MySQL, Redis and MongoDB.
You can read source code of this middleware on GitHub
open in new window and API documentation on pkg.go.devopen in new window.
Installation
The minimum requirement of Go is 1.16.
go get github.com/flamego/session
Storage backends
WARNING
Examples included in this section is to demonstrate the usage of the session middleware, by no means illustrates the idiomatic or even correct way of doing user authentication.
Memory
The session.Sessioneropen in new window works out-of-the-box with an optional session.Optionsopen in new window and uses memory as the storage backend:
package mainimport ("strconv""github.com/flamego/flamego""github.com/flamego/session")func main() {f := flamego.Classic()f.Use(session.Sessioner())f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
Because the memory is volatile, session data do not survive over restarts. Choose other storage backends if you need to persist session data.
File
The session.FileIniteropen in new window is the function to initialize a file storage backend, used together with session.FileConfigopen in new window to customize the backend:
package mainimport ("os""path/filepath""strconv""github.com/flamego/flamego""github.com/flamego/session")func main() {f := flamego.Classic()f.Use(session.Sessioner(session.Options{Initer: session.FileIniter(),Config: session.FileConfig{RootDir: filepath.Join(os.TempDir(), "sessions"),},},))f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
PostgreSQL
The postgres.Initeropen in new window is the function to initialize a PostgreSQL storage backend, used together with postgres.Configopen in new window to customize the backend:
package mainimport ("os""strconv""github.com/flamego/flamego""github.com/flamego/session""github.com/flamego/session/postgres")func main() {f := flamego.Classic()dsn := os.ExpandEnv("postgres://$PGUSER:$PGPASSWORD@$PGHOST:$PGPORT/$PGDATABASE?sslmode=$PGSSLMODE")f.Use(session.Sessioner(session.Options{Initer: postgres.Initer(),Config: postgres.Config{DSN: dsn,Table: "sessions",InitTable: true,},},))f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
MySQL
The mysql.Initeropen in new window is the function to initialize a MySQL storage backend, used together with mysql.Configopen in new window to customize the backend:
package mainimport ("os""strconv""github.com/flamego/flamego""github.com/flamego/session""github.com/flamego/session/mysql")func main() {f := flamego.Classic()dsn := os.ExpandEnv("$MYSQL_USER:$MYSQL_PASSWORD@tcp($MYSQL_HOST:$MYSQL_PORT)/$MYSQL_DATABASE?charset=utf8&parseTime=true")f.Use(session.Sessioner(session.Options{Initer: mysql.Initer(),Config: mysql.Config{DSN: dsn,Table: "cache",InitTable: true,},},))f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
Redis
The redis.Initeropen in new window is the function to initialize a Redis storage backend, used together with redis.Configopen in new window to customize the backend:
package mainimport ("os""strconv""github.com/flamego/flamego""github.com/flamego/session""github.com/flamego/session/redis")func main() {f := flamego.Classic()f.Use(session.Sessioner(session.Options{Initer: redis.Initer(),Config: redis.Config{Options: &redis.Options{Addr: os.ExpandEnv("$REDIS_HOST:$REDIS_PORT"),DB: 15,},},},))f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
MongoDB
The mongo.Initeropen in new window is the function to initialize a MongoDB storage backend, used together with mongo.Configopen in new window to customize the backend:
package mainimport ("os""strconv""github.com/flamego/flamego""github.com/flamego/session""github.com/flamego/session/mongo""go.mongodb.org/mongo-driver/mongo/options")func main() {f := flamego.Classic()f.Use(session.Sessioner(session.Options{Initer: mongo.Initer(),Config: mongo.Config{Options: options.Client().ApplyURI(os.Getenv("MONGODB_URI")),Database: os.Getenv("MONGODB_DATABASE"),Collection: "cache",},},))f.Get("/set", func(s session.Session) string {s.Set("user_id", 123)return "Succeed"})f.Get("/get", func(s session.Session) string {userID, ok := s.Get("user_id").(int)if !ok || userID <= 0 {return "Not authenticated"}return "Authenticated as " + strconv.Itoa(userID)})f.Get("/clear", func(s session.Session) string {s.Delete("user_id")return "Cleared"})f.Run()}
Flash messages
The session middleware provides a mechanism for flash messages, which are always retrieved on the next access of the same session, once and only once (i.e. flash messages get deleted upon retrievals).
A flash message could just be a string in its simplest form:
package mainimport ("github.com/flamego/flamego""github.com/flamego/session")func main() {f := flamego.Classic()f.Use(session.Sessioner())f.Get("/set", func(s session.Session) string {s.SetFlash("This is a flash message")return "Succeed"})f.Get("/get", func(f session.Flash) string {s, ok := f.(string)if !ok || s == "" {return "No flash message"}return s})f.Run()}
The session.Flashopen in new window is just the value holder of the flash message, and it could be any type that fits your application’s needs, and doesn’t even have to be the same type for different routes in the same application!
package mainimport ("fmt""github.com/flamego/flamego""github.com/flamego/session")func main() {f := flamego.Classic()f.Use(session.Sessioner())f.Get("/set-simple", func(s session.Session) string {s.SetFlash("This is a flash message")return "Succeed"})f.Get("/get-simple", func(f session.Flash) string {s, ok := f.(string)if !ok || s == "" {return "No flash message"}return s})type Flash struct {Success stringError string}f.Get("/set-complex", func(s session.Session) string {s.SetFlash(Flash{Success: "It worked!",})return "Succeed"})f.Get("/get-complex", func(f session.Flash) string {s, ok := f.(Flash)if !ok {return "No flash message"}return fmt.Sprintf("%#v", s)})f.Run()}
In the above example, we use different types of flash messages (string and Flash) for different routes and both of them work!
