-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsession.go
55 lines (46 loc) · 1.08 KB
/
session.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
package session
import (
"crypto/hmac"
"crypto/sha1"
"encoding/base64"
"errors"
"fmt"
"net/url"
"strings"
)
type SecureSession struct {
Secret string
}
func New(secret string) SecureSession {
return SecureSession{Secret: secret}
}
func (s SecureSession) EncodeSessionID(sid string) string {
b := base64.StdEncoding.EncodeToString([]byte(sid))
sf := fmt.Sprintf("%s.%s", b, signature(sid, s.Secret))
return url.QueryEscape(sf)
}
func (s SecureSession) DecodeSessionID(value string) (string, error) {
value, err := url.QueryUnescape(value)
if err != nil {
return "", err
}
values := strings.Split(value, ".")
if len(values) != 2 {
return "", errors.New("invalid session id")
}
bsid, err := base64.StdEncoding.DecodeString(values[0])
if err != nil {
return "", err
}
sid := string(bsid)
signData := signature(sid, s.Secret)
if signData != values[1] {
return "", errors.New("invalid session id")
}
return sid, nil
}
func signature(sid string, sign string) string {
h := hmac.New(sha1.New, []byte(sign))
h.Write([]byte(sid))
return fmt.Sprintf("%x", h.Sum(nil))
}