Skip to content
This repository was archived by the owner on Apr 18, 2025. It is now read-only.
This repository was archived by the owner on Apr 18, 2025. It is now read-only.

Add improved user session handling #26

Open
Open
Add improved user session handling#26
Labels
priority:1An important issue that must be fixed before next releasetype:featureNew functionality not present in the system before
@KowalskiPiotr98

Description

@KowalskiPiotr98
KowalskiPiotr98
opened on Dec 30, 2024

#19 added only a very basic session handling, namely: as long as you have a cookie that looks valid, you're good.
It's not terrible, as it uses some sort of encryption, but it lacks useful features like session invalidation, listing all user logins, and so on.

A much better approach would be to use something like Redis to store user session details, and just issue session ids in the cookies instead.

The only caveat here is that all Redis libraries for Gorilla sessions are less than great (mostly because they smell unmaintained), so that will most likely require own implementation.

Metadata

Metadata

Assignees

No one assigned

    Labels

    priority:1An important issue that must be fixed before next releasetype:featureNew functionality not present in the system before

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions